Lucene search

[email protected]NVD:CVE-2020-26683

HistoryAug 22, 2023 - 7:16 p.m.

CVE-2020-26683

2023-08-2219:16:19

CWE-401

[email protected]

web.nvd.nist.gov

memory leak

mupdf 1.17.0

sensitive information access

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

25.9%

JSON

A memory leak issue discovered in /pdf/pdf-font-add.c in Artifex Software MuPDF 1.17.0 allows attackers to obtain sensitive information.

Affected configurations

Nvd

Node

artifexmupdfMatch1.17.0-

VendorProductVersionCPE
artifexmupdf1.17.0cpe:2.3:a:artifex:mupdf:1.17.0:-:*:*:*:*:*:*

Vendor	Product	Version	CPE
artifex	mupdf	1.17.0	cpe:2.3:a:artifex:mupdf:1.17.0:-::::::

References

bugs.ghostscript.com/show_bug.cgi?id=702566

cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=05720b4ee3dbae57e65546dc2eecc3021c08eeea

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

AI Score

5.3

Confidence

High

EPSS

0.001

Percentile

25.9%

JSON

Related for NVD:CVE-2020-26683

ubuntucve1 cve1 debiancve1 veracode1 osv1 prion1 cvelist1