8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
6.9 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.5%
html2xhtml v1.3 was discovered to contain an Out-Of-Bounds read in the function static void elm_close(tree_node_t *nodo) at procesador.c. This vulnerability allows attackers to access sensitive files or cause a Denial of Service (DoS) via a crafted html file.
CPE | Name | Operator | Version |
---|---|---|---|
html2xhtml | eq | 1.1b6 | |
html2xhtml | eq | 1.1.2rc1 | |
html2xhtml | eq | 1.1b3 | |
html2xhtml | eq | 1.1b4 | |
html2xhtml | eq | 1.1b5 | |
html2xhtml | eq | 1.1b6-2 | |
html2xhtml | eq | 1.1.1 | |
html2xhtml | eq | html2xhtml-1.3 | |
html2xhtml | eq | 1.1.2rc3 | |
html2xhtml | eq | 1.1.2 |
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
6.9 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.5%