CVE-2020-9549

Опубликовано: 02 мар. 2020

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

In PDFResurrect 0.12 through 0.19, get_type in pdf.c has an out-of-bounds write via a crafted PDF document.

Ссылки

https://github.com/enferex/pdfresurrect/issues/8
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/03/msg00007.html
Mailing List
Third Party Advisory
https://github.com/enferex/pdfresurrect/issues/8
Exploit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/03/msg00007.html
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:pdfresurrect_project:pdfresurrect:*:*:*:*:*:*:*:*

Версия от 0.12 (включая) до 0.19 (включая)

Конфигурация 2

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01247

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2020-9549

CVSS3: 7.8

ubuntu

почти 6 лет назад

In PDFResurrect 0.12 through 0.19, get_type in pdf.c has an out-of-bounds write via a crafted PDF document.

CVE-2020-9549

CVSS3: 7.8

debian

почти 6 лет назад

In PDFResurrect 0.12 through 0.19, get_type in pdf.c has an out-of-bou ...

GHSA-97mp-gm44-594x

CVSS3: 7.8

github

больше 3 лет назад

In PDFResurrect 0.12 through 0.19, get_type in pdf.c has an out-of-bounds write via a crafted PDF document.

EPSS

Процентиль: 79%

0.01247

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787