Lucene search

K

GoogleOSV:CVE-2018-6192

HistoryJan 24, 2018 - 9:29 p.m.

CVE-2018-6192

2018-01-2421:29:00

Google

osv.dev

3

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

73.1%

In Artifex MuPDF 1.12.0, the pdf_read_new_xref function in pdf/pdf-xref.c allows remote attackers to cause a denial of service (segmentation violation and application crash) via a crafted pdf file.

CPENameOperatorVersion
mupdfeq1.2
mupdfeq1.6-appstore
mupdfeq1.9a-r5
mupdfeq1.4
mupdfeq1.6-r1
mupdfeq0.4
mupdfeq1.1
mupdfeq1.9a-r8
mupdfeq1.11-r0
mupdfeq1.11-rc1

Rows per page:

1-10 of 681

References

www.securityfocus.com/bid/102822

bugs.ghostscript.com/show_bug.cgi?id=698916

lists.debian.org/debian-lts-announce/2019/06/msg00027.html

security.gentoo.org/glsa/201811-15

www.debian.org/security/2018/dsa-4334

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

73.1%

Related for OSV:CVE-2018-6192

veracode1 cvelist1 prion1 nvd1 ubuntucve1 debiancve1 alpinelinux1 cve1 openvas3 osv2 nessus5 debian2 fedora1 archlinux6 gentoo1