CVE-2025-43903

Опубликовано: 18 апр. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

Ссылки

https://gitlab.freedesktop.org/poppler/poppler/-/commit/f1b9c830f145a0042e853d6462b2f9ca4016c669

EPSS

Процентиль: 0%

0.00008

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-347

Связанные уязвимости

CVE-2025-43903

CVSS3: 4.3

ubuntu

4 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

CVE-2025-43903

CVSS3: 4.3

redhat

4 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

CVE-2025-43903

CVSS3: 4.3

debian

4 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the ...

SUSE-SU-2025:1434-1

suse-cvrf

4 месяца назад

Security update for poppler

GHSA-4w9g-4h2x-7qxq

CVSS3: 4.3

github

4 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

EPSS

Процентиль: 0%

0.00008

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-347