VDB
CVE-2021-33390
CVE-2021-33390
PUBLISHED
dpic 2021.04.10 has a use-after-free in thedeletestringbox() function in dpic.y. A different vulnerablility than CVE-2021-32421.
EPSS 0.26% · 49.4th percentile
Risk Scores
EPSS Score
0.26%
49.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:18.04:LTS | dpic | 2014.01.01+dfsg1-0ubuntu1, 2014.01.01+dfsg1-0ubuntu2, 0 |
| Ubuntu:16.04:LTS | dpic | 0, 2014.01.01+dfsg1-0ubuntu1 |
| Ubuntu:24.04:LTS | dpic | 2023.06.01-1, 0 |
| Ubuntu:20.04:LTS | dpic | 2019.08.30-4, 2014.01.01+dfsg1-0ubuntu2, 2020.03.01-1 |
| Ubuntu:25.10 | dpic | 0, 2023.06.01-1 |
| Ubuntu:22.04:LTS | dpic | 0, 2021.01.01-1, 2021.11.01-1 |
Exploit Intelligence
Timeline
- Aug 22, 2023 CVE Published
- Aug 25, 2023 EPSS Score
- Sep 27, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Dec 2, 2023 EPSS Score
- Jan 4, 2024 EPSS Score
- Feb 6, 2024 EPSS Score
- Mar 10, 2024 EPSS Score
- Apr 12, 2024 EPSS Score
- May 16, 2024 EPSS Score
- Jun 18, 2024 EPSS Score
- Jul 21, 2024 EPSS Score
References
- https://ubuntu.com/security/CVE-2021-33390 third-party-advisory
- https://gitlab.com/aplevich/dpic/-/issues/10 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2021-33390 third-party-advisory