Lucene search
Redhat.comRH:CVE-2021-29421HistoryApr 06, 2021 - 5:47 p.m.
CVE-2021-29421
2021-04-0617:47:48
redhat.com
access.redhat.com
16
0.001 Low
EPSS
Percentile
47.3%
There’s a flaw in the pikepdf Python library’s XMP metadata parsing functionality. An attacker who is able to submit a crafted PDF file to be processed by pikepdf could trigger an XML External Entity (XXE) injection. The highest threat of this flaw is to confidentiality of data.
Related
osv
osv
CVE-2021-29421
2021-04-01 20:15:12
Improper Restriction of XML External Entity Reference in pikepdf
2021-04-20 16:30:03
PYSEC-2021-34
2021-04-01 20:15:00
fedora
fedora
[SECURITY] Fedora 32 Update: python-pikepdf-1.19.4-2.fc32
2021-04-09 15:41:16
[SECURITY] Fedora 33 Update: python-pikepdf-1.19.4-2.fc33
2021-04-09 15:17:19
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0268)
2022-01-28 00:00:00
Fedora: Security Advisory for python-pikepdf (FEDORA-2021-d97bc581be)
2021-04-10 00:00:00
Fedora: Security Advisory for python-pikepdf (FEDORA-2021-4bf9909a76)
2021-04-10 00:00:00
nessus
nessus
Fedora 32 : python-pikepdf (2021-d97bc581be)
2021-04-19 00:00:00
Fedora 33 : python-pikepdf (2021-4bf9909a76)
2021-04-19 00:00:00
mageia
mageia
Updated python-pikepdf packages fix security vulnerability
2021-06-18 22:24:28
ubuntucve
ubuntucve
CVE-2021-29421
2021-04-01 00:00:00
alpinelinux
alpinelinux
CVE-2021-29421
2021-04-01 20:15:00
debiancve
debiancve
CVE-2021-29421
2021-04-01 20:15:00
prion
prion
Code injection
2021-04-01 20:15:00
cvelist
cvelist
CVE-2021-29421
2021-04-01 00:00:00
github
github
Improper Restriction of XML External Entity Reference in pikepdf
2021-04-20 16:30:03
cve
cve
CVE-2021-29421
2021-04-01 20:15:00
CVE-2021-46849
2022-10-24 14:15:00
veracode
veracode
XML External Entity (XXE)
2021-04-05 05:26:45
sonarsource
sonarsource