Lucene search

K
cve[email protected]CVE-2022-38235
HistoryAug 16, 2022 - 9:15 p.m.

CVE-2022-38235

2022-08-1621:15:14
CWE-754
web.nvd.nist.gov
36
5
cve-2022-38235
xpdf
segmentation violation
dctstream
getchar
stream.cc
nvd

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

19.9%

XPDF commit ffaf11c was discovered to contain a segmentation violation via DCTStream::getChar() at /xpdf/Stream.cc.

Affected configurations

NVD
Node
xpdf_projectxpdfMatch3.04
VendorProductVersionCPE
xpdf_projectxpdf3.04cpe:/a:xpdf_project:xpdf:3.04:::

Social References

More

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

19.9%

Related for CVE-2022-38235