exploitDog

CVE-2025-63917

Опубликовано: 17 нояб. 2025

Источник: nvd

CVSS3: 7.1

EPSS Низкий

Описание

PDFPatcher thru 1.1.3.4663 executable's XML bookmark import functionality does not restrict XML external entity (XXE) references. The application uses .NET's XmlDocument class without disabling external entity resolution, enabling attackers to: Read arbitrary files from the victim's filesystem, exfiltrate sensitive data via out-of-band (OOB) HTTP requests, perform SSRF attacks against internal network resources, or cause a denial of service via entity expansion attacks.

Ссылки

https://github.com/cydtseng/Vulnerability-Research/blob/main/pdfpatcher/XXE-Importers.md
Exploit
Third Party Advisory
https://github.com/wmjordan/PDFPatcher
Product
https://www.cnblogs.com/pdfpatcher
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cnblogs:pdfpatcher:*:*:*:*:*:*:*:*

Версия до 1.1.3.4663 (включая)

EPSS

Процентиль: 30%

0.0011

Низкий

7.1 High

CVSS3

Дефекты

CWE-611

Связанные уязвимости

GHSA-59qf-vrm9-q977

CVSS3: 7.1

github

3 месяца назад

PDFPatcher thru 1.1.3.4663 executable's XML bookmark import functionality does not restrict XML external entity (XXE) references. The application uses .NET's XmlDocument class without disabling external entity resolution, enabling attackers to: Read arbitrary files from the victim's filesystem, exfiltrate sensitive data via out-of-band (OOB) HTTP requests, perform SSRF attacks against internal network resources, or cause a denial of service via entity expansion attacks.

EPSS

Процентиль: 30%

0.0011

Низкий

7.1 High

CVSS3

Дефекты

CWE-611