5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
40.7%
software: pdfbox 2.0.24
WASP: ROSA-CHROME
package_evr_string: pdfbox-2.0.24-1.src.rpm
CVE-ID: CVE-2021-27807
BDU-ID: None
CVE-Crit: HIGH
CVE-DESC.: A carefully crafted PDF file may cause an infinite loop when loading the file. This issue affects Apache PDFBox version 2.0.22 and earlier versions of 2.0.x.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update pdfbox
CVE-ID: CVE-2021-27906
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: A carefully crafted PDF file may cause an OutOfMemory exception when loading the file. This issue affects Apache PDFBox version 2.0.22 and earlier versions of 2.0.x.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update pdfbox
CVE-ID: CVE-2021-31811
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: In Apache PDFBox, a carefully created PDF file can cause an OutOfMemory-Exception exception when loading the file. This issue affects Apache PDFBox version 2.0.23 and earlier versions of 2.0.x.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update pdfbox
CVE-ID: CVE-2021-31812
BDU-ID: None
CVE-Crit: MEDIUM
CVE-DESC.: In Apache PDFBox, a carefully crafted PDF file can cause an infinite loop when the file is downloaded. This issue affects Apache PDFBox version 2.0.23 and earlier versions of 2.0.x.
CVE-STATUS: Fixed
CVE-REV: To close, run the command: sudo dnf update pdfbox
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
40.7%