CVE-2021-23158

CRITICAL

htmldoc <1.9.12 - RCE

Title source: llm

Description

A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of service.

References (3)

[Issue Tracking, Third Party Advisory] https://bugzilla.redhat.com/show_bug.cgi?id=1967018

[Patch, Third Party Advisory] https://github.com/michaelrsweet/htmldoc/commit/369b2ea1fd0d0537ba707f20a2f047b6afd2fbdc

View Patch ZIP pw:eip

[Exploit, Issue Tracking, Third Party Advisory] https://github.com/michaelrsweet/htmldoc/issues/414

Scores

CVSS v3 9.8

EPSS 0.0033

EPSS Percentile 55.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-415

Status published

Affected Products (1)

htmldoc_project/htmldoc

Timeline

Published Mar 16, 2022

Tracked Since Feb 18, 2026