Lucene search

CVE-2021-27807

🗓️ 19 Mar 2021 16:13:15Reported by apacheType

cve🔗 web.nvd.nist.gov📰️ 16 Media mentions👁 143 Views

A PDF file triggers infinite loop in Apache PDFBox 2.0.22 & prior version

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 41
RedhatCVE	CVE-2021-27807	19 Mar 202121:49	–	redhatcve
Prion	Code injection	19 Mar 202116:15	–	prion
NVD	CVE-2021-27807	19 Mar 202116:15	–	nvd
CNVD	Unspecified Vulnerability in Apache PDFBox	25 Mar 202100:00	–	cnvd
OSV	CVE-2021-27807	19 Mar 202116:15	–	osv
OSV	GHSA-2H3J-M7GR-25XJ Excessive Iteration Denial of Service in Apache PDFBox	16 Jun 202117:56	–	osv
OSV	UBUNTU-CVE-2021-27807	19 Mar 202116:15	–	osv
OSV	MGASA-2021-0184 Updated pdfbox packages fix security vulnerabilities	12 Apr 202119:59	–	osv
OSV	OPENSUSE-SU-2024:10622-1 apache-pdfbox-2.0.23-1.3 on GA media	15 Jun 202400:00	–	osv
Veracode	Denial Of Service (DoS)	22 Mar 202101:39	–	veracode

Nvd

Vulners

Node

apache pdfboxRange2.0.0–2.0.22

Node

fedoraproject fedoraMatch32

fedoraproject fedoraMatch33

fedoraproject fedoraMatch34

Node

oracle banking_trade_finance_process_managementMatch14.2.0

oracle banking_trade_finance_process_managementMatch14.3.0

oracle banking_trade_finance_process_managementMatch14.5.0

oracle banking_treasury_managementMatch14.5

oracle banking_virtual_account_managementMatch14.2.0

oracle banking_virtual_account_managementMatch14.3.0

oracle banking_virtual_account_managementMatch14.5.0

oracle communications_session_report_managerRange8.0.0–8.2.4.0

oracle flexcube_universal_bankingRange14.0.0–14.3.0

oracle flexcube_universal_bankingMatch14.5.0

oracle hyperion_financial_reportingMatch11.1.2.4

oracle hyperion_financial_reportingMatch11.2.6.0

oracle hyperion_infrastructure_technologyRange<11.2.8.0

oracle outside_in_technologyMatch8.5.5

oracle primavera_unifierRange17.7–17.12

oracle primavera_unifierMatch18.8

oracle primavera_unifierMatch19.12

oracle primavera_unifierMatch20.12

oracle retail_customer_management_and_segmentation_foundationMatch19.0

oracle retail_xstore_point_of_serviceMatch16.0.6

oracle retail_xstore_point_of_serviceMatch17.0.4

oracle retail_xstore_point_of_serviceMatch18.0.3

oracle retail_xstore_point_of_serviceMatch19.0.2

oracle retail_xstore_point_of_serviceMatch20.0.1

oracle webcenter_sitesMatch12.2.1.3.0

oracle webcenter_sitesMatch12.2.1.4.0

oracle communications_messaging_serverMatch8.1

[
  {
    "product": "Apache PDFBox",
    "vendor": "Apache Software Foundation",
    "versions": [
      {
        "lessThanOrEqual": "2.0.22",
        "status": "affected",
        "version": "Apache PDFBox",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
lists	www.lists.apache.org/thread.html/rc69140d894c6a9c67a8097a25656cce59b46a5620c354ceba10543c3%40%3Cnotifications.ofbiz.apache.org%3E
lists	www.lists.apache.org/thread.html/r5c8e2125d18af184c80f7a986fbe47eaf0d30457cd450133adc235ac%40%3Ccommits.ofbiz.apache.org%3E
lists	www.lists.apache.org/thread.html/re1e35881482e07dc2be6058d9b44483457f36133cac67956686ad9b9%40%3Cnotifications.ofbiz.apache.org%3E
lists	www.lists.apache.org/thread.html/r4717f902f8bc36d47b3fa978552a25e4ed3ddc2fffb52b94fbc4ab36%40%3Cusers.pdfbox.apache.org%3E
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6KDA2U4KL2N3XT3PM4ZJEBBA6JJIH2G4/
lists	www.lists.apache.org/thread.html/r54594251369e14c185da9662a5340a52afbbdf75d61c9c3a69c8f2e8%40%3Cdev.pdfbox.apache.org%3E
lists	www.lists.apache.org/thread.html/r818058ff1e4b9f6bef4e5a2e74faff38cb3d3885c1e2db398bc55cfb%40%3Cusers.pdfbox.apache.org%3E
lists	www.lists.apache.org/thread.html/r4cbc3f6981cd0a1a482531df9d44e4c42a7f63342a7ba78b7bff8a1b%40%3Cnotifications.james.apache.org%3E
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PT72QOFDXLJ7PLTN66EMG5EHPTE7TFZ/
lists	www.lists.apache.org/thread.html/r043edc5dcf9199f7f882ed7906b41cb816753766e88b8792dbf319a9%40%3Cannounce.apache.org%3E

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 Mar 2021 16:15Current

5.6Medium risk

Vulners AI Score5.6

CVSS24.3

CVSS35.5

EPSS0.0045

CWE-834