CVE-2025-43903

Опубликовано: 18 апр. 2025

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 4.3

Описание

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

Релиз	Статус	Примечание
devel	pending
esm-infra/bionic	released	0.62.0-2ubuntu2.14+esm6
esm-infra/focal	not-affected	0.86.1-0ubuntu1.7
esm-infra/xenial	not-affected	code not present
focal	released	0.86.1-0ubuntu1.7
jammy	released	22.02.0-2ubuntu0.8
noble	released	24.02.0-1ubuntu9.4
oracular	released	24.08.0-1ubuntu0.3
plucky	released	25.03.0-3ubuntu1
upstream	released	25.03.0-4

Показывать по

Ссылки на источники

EPSS

Процентиль: 0%

0.00008

Низкий

4.3 Medium

CVSS3

Связанные уязвимости

CVE-2025-43903

CVSS3: 4.3

redhat

2 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

CVE-2025-43903

CVSS3: 4.3

nvd

2 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

CVE-2025-43903

CVSS3: 4.3

debian

2 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the ...

SUSE-SU-2025:1434-1

suse-cvrf

около 2 месяцев назад

Security update for poppler

GHSA-4w9g-4h2x-7qxq

CVSS3: 4.3

github

2 месяца назад

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

EPSS

Процентиль: 0%

0.00008

Низкий

4.3 Medium

CVSS3

CVE-2025-43903

Описание

Пакет poppler

Ссылки на источники

Связанные уязвимости