GHSA-f3pg-6m52-2j62

Опубликовано: 11 авг. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

Ссылки

EPSS

Процентиль: 53%

0.00302

Низкий

8.8 High

CVSS3

CVE ID

CVE-2021-25786

Дефекты

CWE-416

Связанные уязвимости

CVE-2021-25786

CVSS3: 5.3

ubuntu

почти 2 года назад

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

CVE-2021-25786

CVSS3: 5.3

redhat

почти 2 года назад

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

CVE-2021-25786

CVSS3: 5.3

nvd

почти 2 года назад

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

CVE-2021-25786

CVSS3: 5.3

debian

почти 2 года назад

An issue was discovered in QPDF version 10.0.4, allows remote attacker ...

ROS-20250403-02

CVSS3: 5.3

redos

3 месяца назад

Уязвимость qpdf

EPSS

Процентиль: 53%

0.00302

Низкий

8.8 High

CVSS3

CVE ID

CVE-2021-25786

Дефекты

CWE-416