Lucene search
GitHub_MCVELIST:CVE-2021-39176HistoryAug 31, 2021 - 6:05 p.m.
CVE-2021-39176 Missing Release of Memory after Effective Lifetime in detect-character-encoding
2021-08-3118:05:12
CWE-401
GitHub_M
www.cve.org
2
cve-2021-39176
memory release
detect-character-encoding
patch
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.003
Percentile
69.9%
detect-character-encoding is a package for detecting character encoding using ICU. In detect-character-encoding v0.3.0 and earlier, allocated memory is not released. The problem has been patched in detect-character-encoding v0.3.1.
CNA Affected
[
{
"product": "detect-character-encoding",
"vendor": "sonicdoe",
"versions": [
{
"status": "affected",
"version": "< 0.3.1"
}
]
}
]References
Related
prion
prion
Design/Logic Flaw
2021-08-31 18:15:00
veracode
veracode
Denial Of Service (DoS)
2021-09-02 07:37:12
osv
osv
CVE-2021-39176
2021-08-31 18:15:08
github
github
nvd
nvd
CVE-2021-39176
2021-08-31 18:15:08
cve
cve
CVE-2021-39176
2021-08-31 18:15:08
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.003
Percentile
69.9%
Related for CVELIST:CVE-2021-39176