Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-68hv-95wx-r3jh

Опубликовано: 13 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 8.8

Описание

In PoDoFo 0.9.5, there exists a heap-based buffer overflow vulnerability in PoDoFo::PdfTokenizer::GetNextToken() in PdfTokenizer.cpp, a related issue to CVE-2017-5886. Remote attackers could leverage this vulnerability to cause a denial-of-service or potentially execute arbitrary code via a crafted pdf file.

In PoDoFo 0.9.5, there exists a heap-based buffer overflow vulnerability in PoDoFo::PdfTokenizer::GetNextToken() in PdfTokenizer.cpp, a related issue to CVE-2017-5886. Remote attackers could leverage this vulnerability to cause a denial-of-service or potentially execute arbitrary code via a crafted pdf file.

Ссылки

EPSS

Процентиль: 87%
0.03337
Низкий

8.8 High

CVSS3

CVE ID

CVE-2018-8000

Дефекты

CWE-787

Связанные уязвимости

ubuntu логотип

CVE-2018-8000

CVSS3: 8.8
ubuntu
почти 8 лет назад

In PoDoFo 0.9.5, there exists a heap-based buffer overflow vulnerability in PoDoFo::PdfTokenizer::GetNextToken() in PdfTokenizer.cpp, a related issue to CVE-2017-5886. Remote attackers could leverage this vulnerability to cause a denial-of-service or potentially execute arbitrary code via a crafted pdf file.

nvd логотип

CVE-2018-8000

CVSS3: 8.8
nvd
почти 8 лет назад

In PoDoFo 0.9.5, there exists a heap-based buffer overflow vulnerability in PoDoFo::PdfTokenizer::GetNextToken() in PdfTokenizer.cpp, a related issue to CVE-2017-5886. Remote attackers could leverage this vulnerability to cause a denial-of-service or potentially execute arbitrary code via a crafted pdf file.

debian логотип

CVE-2018-8000

CVSS3: 8.8
debian
почти 8 лет назад

In PoDoFo 0.9.5, there exists a heap-based buffer overflow vulnerabili ...

EPSS

Процентиль: 87%
0.03337
Низкий

8.8 High

CVSS3

CVE ID

CVE-2018-8000

Дефекты

CWE-787