Описание
Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, the "convert file to pdf" functionality (/api/v1/convert/file/pdf) uses LibreOffice's unoconvert tool for conversion, and SSRF vulnerabilities exist during the conversion process. This issue has been patched in version 1.1.0.
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.0 (исключая)
cpe:2.3:a:stirlingpdf:stirling_pdf:*:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00059
Низкий
8.6 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-918
EPSS
Процентиль: 19%
0.00059
Низкий
8.6 High
CVSS3
9.8 Critical
CVSS3
Дефекты
CWE-918