Lucene search
HistoryAug 25, 2022 - 6:15 p.m.
CVE-2021-42522
information disclosure
anjuta-bookmarks.c
libxml2 api
g_free()
xmlgetprop()
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
51.4%
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call ‘g_free()’ to release the return value of ‘xmlGetProp()’.
Affected configurations
Node
gnomeanjutaMatch2.0.0
Related
osv
osv
CVE-2021-42522
2022-08-25 18:15:09
prion
prion
Information disclosure
2022-08-25 18:15:00
cvelist
cvelist
CVE-2021-42522
2022-08-25 17:27:07
veracode
veracode
Information Disclosure
2022-08-26 06:34:11
cve
cve
CVE-2021-42522
2022-08-25 18:15:09
debiancve
debiancve
CVE-2021-42522
2022-08-25 18:15:09
ubuntucve
ubuntucve
CVE-2021-42522
2022-08-25 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.002
Percentile
51.4%
Related for NVD:CVE-2021-42522