Описание
Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | ignored | vulnerability has been disputed by upstream maintainers |
| esm-apps/bionic | ignored | vulnerability has been disputed by upstream maintainers |
| esm-apps/focal | ignored | vulnerability has been disputed by upstream maintainers |
| esm-apps/jammy | ignored | vulnerability has been disputed by upstream maintainers |
| esm-apps/noble | ignored | vulnerability has been disputed by upstream maintainers |
| esm-apps/xenial | ignored | vulnerability has been disputed by upstream maintainers |
| esm-infra-legacy/trusty | ignored | vulnerability has been disputed by upstream maintainers |
| focal | ignored | end of standard support, was ignored [vulnerability has been disputed by upstream maintainers] |
| hirsute | ignored | end of life |
Показывать по
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'.
Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v ...
Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'.
Уязвимость функции IsNextToken компонента src/base/PdfToenizer.cpp программной библиотеки для работы с PDF PoDoFo, позволяющая нарушителю получить доступ к конфиденциальным данным
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3