CVE-2024-33864

2024-05-1416:17:22

[email protected]

web.nvd.nist.gov

ssrf

linqi

windows

document template

generation

remote images

process creation

file inclusion

pdf document

malicious javascript

nvd

cve-2024-33864

7 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

JSON

An issue was discovered in linqi before 1.4.0.1 on Windows. There is SSRF via Document template generation; i.e., via remote images in process creation, file inclusion, and PDF document generation via malicious JavaScript.

References

linqi.help/Updates/en#/SecurityUpdates

www.linqi.de/de-DE/blog.html