Lucene search

K
osvGoogleOSV:CVE-2021-42528
HistoryMay 02, 2022 - 11:15 p.m.

CVE-2021-42528

2022-05-0223:15:07
Google
osv.dev
2

6.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.3%

XMP Toolkit 2021.07 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

6.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.3%