Lucene search
HistoryApr 24, 2024 - 7:15 p.m.
CVE-2024-4141
out-of-bounds array write
xpdf
type 1 font
bounds check
modern compilers
cve-2024-4141
2.9 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
3.9 Low
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid character code in a Type 1 font. The root problem was a bounds check that was being optimized away by modern compilers.
Related
openvas
openvas
openSUSE: Security Advisory for poppler (SUSE-SU-2024:1900-1)
2024-06-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1899-1)
2024-06-04 00:00:00
Mageia: Security Advisory (MGASA-2024-0218)
2024-06-14 00:00:00
ubuntucve
ubuntucve
CVE-2024-4141
2024-04-24 00:00:00
cve
cve
CVE-2024-4141
2024-04-24 19:15:47
debiancve
debiancve
CVE-2024-4141
2024-04-24 19:15:47
cvelist
cvelist
nessus
nessus
SUSE SLES12 Security Update : poppler (SUSE-SU-2024:1901-1)
2024-06-04 00:00:00
SUSE SLES12 Security Update : poppler (SUSE-SU-2024:1899-1)
2024-06-04 00:00:00
mageia
mageia
Updated poppler packages fix security vulnerability
2024-06-14 04:31:37
2.9 Low
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
3.9 Low
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for NVD:CVE-2024-4141