CVE-2024-21501

2024-02-2405:15:44

Debian Security Bug Tracker

security-tracker.debian.org

sanitize-html

information exposure

file enumeration

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

6.8

Confidence

Low

EPSS

Percentile

13.0%

JSON

Versions of the package sanitize-html before 2.12.1 are vulnerable to Information Exposure when used on the backend and with the style attribute allowed, allowing enumeration of files in the system (including project dependencies). An attacker could exploit this vulnerability to gather details about the file system structure and dependencies of the targeted server.

OSVersionArchitecturePackageVersionFilename
Debian12allnode-sanitize-html<= 2.8.0+~2.6.2-1node-sanitize-html_2.8.0+~2.6.2-1_all.deb
Debian999allnode-sanitize-html< 2.13.0+~2.11.0-1node-sanitize-html_2.13.0+~2.11.0-1_all.deb
Debian13allnode-sanitize-html< 2.13.0+~2.11.0-1node-sanitize-html_2.13.0+~2.11.0-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	node-sanitize-html	<= 2.8.0+~2.6.2-1	node-sanitize-html_2.8.0+~2.6.2-1_all.deb
Debian	999	all	node-sanitize-html	< 2.13.0+~2.11.0-1	node-sanitize-html_2.13.0+~2.11.0-1_all.deb
Debian	13	all	node-sanitize-html	< 2.13.0+~2.11.0-1	node-sanitize-html_2.13.0+~2.11.0-1_all.deb