Lucene search

CVE-2019-12153

🗓️ 11 Jun 2019 21:01:29Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 79 Views

Lack of validation in HTML parser in RealObjects PDFreactor leads to SSRF, allowing attackers to access network or file resources on behalf of the server

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 3
Prion	Input validation	11 Jun 201921:29	–	prion
Cvelist	CVE-2019-12153	11 Jun 201920:33	–	cvelist
NVD	CVE-2019-12153	11 Jun 201921:29	–	nvd

Nvd

Node

realobjects pdfreactorRange<10.1.10722

Source	Link
pdfreactor	www.pdfreactor.com/pdfreactor-10-maintenance-release-10-1-10722-now-available/
blog	www.blog.gdssecurity.com/labs/2019/5/28/ssrf-and-xxe-vulnerabilities-in-pdfreactor.html
pdfreactor	www.pdfreactor.com/important-pdfreactor-security-advisory/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Jun 2019 21:29Current

9.2High risk

Vulners AI Score9.2

CVSS26.4

CVSS310

EPSS0.00357

CWE-918