Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:47 a.m.7 views

CVE-2024-52800

veraPDF is an open source PDF/A validation library. Executing policy checks using custom schematron files via the CLI invokes an XSL transformation that may theoretically lead to a remote code execution RCE vulnerability. This doesn't affect the standard validation and policy checks functionality...

2.3CVSS7.8AI score0.01063EPSS
Exploits0References1
Circl
Circl
added 2024/11/30 6:58 a.m.6 views

CVE-2024-52800

creationtimestamp| type| source ---|---|--- 2024-11-30 06:58:11+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/9255...

2.3CVSS4.8AI score0.01063EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/29 6:20 p.m.10 views

CVE-2024-52800 Potential XXE (XML External Entity Injection) vulnerability in veraPDF CLI

veraPDF is an open source PDF/A validation library. Executing policy checks using custom schematron files via the CLI invokes an XSL transformation that may theoretically lead to a remote code execution RCE vulnerability. This doesn't affect the standard validation and policy checks functionality...

2.3CVSS7.8AI score0.01063EPSS
Exploits0References2
CVE
CVE
added 2024/11/29 6:20 p.m.57 views

CVE-2024-52800

The CVE-2024-52800 issue affects veraPDF: when executing policy checks via the CLI using custom Schematron-based policy files, an XSL transformation may enable a remote code execution (RCE) or XXE-type vector. The vulnerability concerns the policy-check workflow (policy profiles with user-provide...

2.3CVSS7.7AI score0.01063EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/29 6:20 p.m.21 views

CVE-2024-52800 Potential XXE (XML External Entity Injection) vulnerability in veraPDF CLI

veraPDF is an open source PDF/A validation library. Executing policy checks using custom schematron files via the CLI invokes an XSL transformation that may theoretically lead to a remote code execution RCE vulnerability. This doesn't affect the standard validation and policy checks functionality...

2.3CVSS0.01063EPSS
Exploits0References2
Rows per page
Query Builder