CVE-2021-39534

Severity

8.8HIGH

EPSS

0.4%

top 40.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedSep 20

Latest updateAug 24

Description

An issue was discovered in libslax through v0.22.1. slaxIsCommentStart() in slaxlexer.c has a heap-based buffer overflow.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

OSV

fastdds vulnerabilities↗2023-08-24

▶

GHSA

GHSA-4wgj-77qr-7qgf: An issue was discovered in libslax through v0↗2022-05-24

▶

CVEList

CVE-2021-39534: An issue was discovered in libslax through v0↗2021-09-20

▶