VYPR
Unrated severityNVD Advisory· Published Aug 11, 2015· Updated Jun 17, 2026

CVE-2015-5523

CVE-2015-5523

Description

The ParseValue function in lexer.c in tidy before 4.9.31 allows remote attackers to cause a denial of service (crash) via vectors involving multiple whitespace characters before an empty href, which triggers a large memory allocation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.