CVE-2024-2971

Опубликовано: 26 мар. 2024

Источник: nvd

CVSS3: 2.9

CVSS3: 5.5

EPSS Низкий

Описание

Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by negative object number in indirect reference in the input PDF file.

Ссылки

https://www.xpdfreader.com/security-bug/CVE-2024-2971.html
Vendor Advisory
https://www.xpdfreader.com/security-bug/CVE-2024-2971.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:xpdfreader:xpdf:*:*:*:*:*:*:*:*

Версия до 4.05 (включая)

EPSS

Процентиль: 8%

0.0003

Низкий

2.9 Low

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-787

Связанные уязвимости

CVE-2024-2971

CVSS3: 2.9

ubuntu

почти 2 года назад

Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by negative object number in indirect reference in the input PDF file.

CVE-2024-2971

CVSS3: 2.9

redhat

почти 2 года назад

Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by negative object number in indirect reference in the input PDF file.

GHSA-jvwm-5xhx-5mqp

CVSS3: 2.9

github

почти 2 года назад

Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by negative object number in indirect reference in the input PDF file.

EPSS

Процентиль: 8%

0.0003

Низкий

2.9 Low

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-787