Vulnerability Details CVE-2023-4241
lol-html can cause panics on certain HTML inputs. Anyone processing arbitrary 3rd party HTML with the library is affected.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.8%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-4241
-
cpe:2.3:a:cloudflare:lol-html:-
-
cpe:2.3:a:cloudflare:lol-html:0.2.0
-
cpe:2.3:a:cloudflare:lol-html:0.3.0
-
cpe:2.3:a:cloudflare:lol-html:0.3.1
-
cpe:2.3:a:cloudflare:lol-html:0.3.3
-
cpe:2.3:a:cloudflare:lol-html:0.4.0
-
cpe:2.3:a:cloudflare:lol-html:1.0.0
-
cpe:2.3:a:cloudflare:lol-html:1.0.1
-
cpe:2.3:a:cloudflare:lol-html:1.1.0