CVE-2021-25786

Опубликовано: 11 авг. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 5.3

Описание

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

Релиз	Статус	Примечание
bionic	released	8.0.2-3ubuntu0.1
devel	not-affected
esm-infra/bionic	released	8.0.2-3ubuntu0.1
esm-infra/focal	released	9.1.1-1ubuntu0.1
esm-infra/xenial	released	8.0.2-3~16.04.1+esm1
focal	released	9.1.1-1ubuntu0.1
jammy	not-affected	10.6.3-1
lunar	not-affected
mantic	not-affected
trusty	ignored	end of standard support

Показывать по

Ссылки на источники

EPSS

Процентиль: 53%

0.00302

Низкий

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2021-25786

CVSS3: 5.3

redhat

больше 2 лет назад

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

CVE-2021-25786

CVSS3: 5.3

nvd

больше 2 лет назад

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

CVE-2021-25786

CVSS3: 5.3

debian

больше 2 лет назад

An issue was discovered in QPDF version 10.0.4, allows remote attacker ...

ROS-20250403-02

CVSS3: 5.3

redos

9 месяцев назад

Уязвимость qpdf

GHSA-f3pg-6m52-2j62

CVSS3: 8.8

github

больше 2 лет назад

An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf.

EPSS

Процентиль: 53%

0.00302

Низкий

5.3 Medium

CVSS3

CVE-2021-25786

Описание

Пакет qpdf

Ссылки на источники

Связанные уязвимости