Lucene search
HistoryFeb 17, 2023 - 6:15 p.m.
CVE-2021-33391
html tidy
arbitrary code execution
gdoc.c
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.5%
An issue in HTACG HTML Tidy v5.7.28 allows attacker to execute arbitrary code via the -g option of the CleanNode() function in gdoc.c.
Affected configurations
Node
htacgtidyMatch5.7.28
linuxlinux_kernelMatch-
References
Related
cbl_mariner
cbl_mariner
CVE-2021-33391 affecting package tidy for versions less than 5.8.0-6
2023-05-25 09:38:10
CVE-2021-33391 affecting package tidy for versions less than 5.8.0-6
2024-03-19 17:21:46
cvelist
cvelist
CVE-2021-33391
2023-02-17 00:00:00
prion
prion
Design/Logic Flaw
2023-02-17 18:15:00
nessus
nessus
ubuntucve
ubuntucve
CVE-2021-33391
2023-02-17 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6483-1)
2023-11-16 00:00:00
cve
cve
CVE-2021-33391
2023-02-17 18:15:11
osv
osv
tidy-html5 vulnerability
2023-11-15 14:31:49
ubuntu
ubuntu
HTML Tidy vulnerability
2023-11-15 00:00:00
debiancve
debiancve
CVE-2021-33391
2023-02-17 18:15:11
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
65.5%
Related for NVD:CVE-2021-33391