Lucene search
K

490 matches found

OSV
OSV
added 2024/09/04 10:15 p.m.1 views

DEBIAN-CVE-2024-20505

A vulnerability in the PDF parsing module of Clam AntiVirus ClamAV versions 1.4.0, 1.3.2 and prior versions, all 1.2.x versions, 1.0.6 and prior versions, all 0.105.x versions, all 0.104.x versions, and 0.103.11 and all prior versions could allow an unauthenticated, remote attacker to cause a...

7.5CVSS6.1AI score0.00555EPSS
Exploits0References1
OSV
OSV
added 2024/08/21 9:15 p.m.2 views

DEBIAN-CVE-2024-7973

Heap buffer overflow in PDFium in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file. Chromium security severity: Medium...

8.8CVSS7.9AI score0.00732EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/08/02 7:2 a.m.30 views

Cybercriminals Abusing Cloudflare Tunnels to Evade Detection and Spread Malware

Cybersecurity companies are warning about an uptick in the abuse of Clouflare's TryCloudflare free service for malware delivery. The activity, documented by both eSentire and Proofpoint, entails the use of TryCloudflare to create a rate-limited tunnel that acts as a conduit to relay traffic from ...

7.5AI score
Exploits0
OSV
OSV
added 2024/08/01 2:15 a.m.4 views

CVE-2024-6687

The CTT Expresso para WooCommerce plugin for WordPress is vulnerable to sensitive information exposure in all versions up to and including 3.2.12 via the /wp-content/uploads/cepw directory. The generated .pdf and log files are publicly accessible and contain sensitive information such as sender a...

7.5CVSS5.7AI score0.00415EPSS
Exploits0References2
OSV
OSV
added 2024/06/21 7:38 p.m.4 views

CVE-2023-45673 Arbitrary code execution on click of PDF links in Joplin

Joplin is a free, open source note taking and to-do application. A remote code execution RCE vulnerability in affected versions allows clicking on a link in a PDF in an untrusted note to execute arbitrary shell commands. Clicking links in PDFs allows for arbitrary code execution because Joplin...

8.9CVSS8.6AI score0.01028EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/06/21 12:0 a.m.6 views

The vulnerability of the PDFium PDF-content processor in Microsoft Edge and Google Chrome browsers allows a hacker to disclose protected information.

The vulnerability of the PDFium PDF-content processor in Microsoft Edge and Google Chrome browsers is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to disclose protected information through specially created PDF files...

7.8CVSS7.5AI score0.00464EPSS
Exploits0References14Affected Software7
Positive Technologies
Positive Technologies
added 2024/05/21 12:0 a.m.3 views

PT-2024-6407 · Pdf Xchange · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this, where the target must...

7.8CVSS7.2AI score0.0036EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/05/09 12:0 a.m.2 views

PT-2024-26004 · Unknown · Kioware For Windows

Name of the Vulnerable Software and Affected Versions: KioWare for Windows versions all through 8.35 Description: The issue allows an attacker to escape the environment by downloading PDF files, which are then opened in an external PDF viewer. This can lead to launching a web browser, searching...

8.4CVSS6.5AI score0.0027EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2024/05/03 3:15 a.m.5 views

CVE-2023-39490

PDF-XChange Editor PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must vis...

7.8CVSS6.2AI score0.00378EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/05/02 5:15 p.m.21 views

CVE-2024-3585

The Send PDF for Contact Form 7 plugin for WordPress is vulnerable to unauthorized access of form submissions due to a missing capability check on the hooks function in all versions up to, and including, 1.0.2.3. This makes it possible for unauthenticated attackers to download information about...

5.3CVSS5AI score0.00691EPSS
Exploits0References3
CVE
CVE
added 2024/05/02 4:51 p.m.76 views

CVE-2024-3585

CVE-2024-3585 describes a vulnerability in the Send PDF for Contact Form 7 plugin for WordPress. It permits unauthenticated access to form submissions (including PDFs) due to a missing capability check on the hooks function in all versions up to and including 1.0.2.3, enabling information exposur...

5.3CVSS5AI score0.00691EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2024/04/18 10:31 a.m.29 views

How to Conduct Advanced Static Analysis in a Malware Sandbox

Sandboxes are synonymous with dynamic malware analysis. They help to execute malicious files in a safe virtual environment and observe their behavior. However, they also offer plenty of value in terms of static analysis. See these five scenarios where a sandbox can prove to be a useful tool in yo...

7.6AI score
Exploits0
The Hacker News
The Hacker News
added 2024/04/05 9:40 a.m.31 views

From PDFs to Payload: Bogus Adobe Acrobat Reader Installers Distribute Byakugan Malware

Bogus installers for Adobe Acrobat Reader are being used to distribute a new multi-functional malware dubbed Byakugan. The starting point of the attack is a PDF file written in Portuguese that, when opened, shows a blurred image and asks the victim to click on a link to download the Reader...

6.6AI score
Exploits0
HackRead
HackRead
added 2024/03/05 10:13 a.m.24 views

New CHAVECLOAK Banking Trojan Targets Brazilians via Malicious PDFs

By Deeba Ahmed The CHAVECLOAK banking Trojan employs PDFs, ZIP downloads, DLL sideloading, and deceptive pop-ups to target Brazil's unsuspecting banking users financial sector. This is a post from HackRead.com Read the original post: New CHAVECLOAK Banking Trojan Targets Brazilians via Malicious...

7.2AI score
Exploits0
hivepro
hivepro
added 2024/01/22 9:38 a.m.14 views

COLDRIVER Expands Beyond Phishing, Incorporating Custom SPICA Backdoor

Summary: The threat actor associated with Russia, known as COLDRIVER or Star Blizard, has expanded its tactics from mere credential harvesting. The group has initiated campaigns where PDFs are employed as lure documents to distribute malware. Notably, COLDRIVER has introduced its first custom...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/20 2:16 a.m.44 views

Invoice Phishing Alert: TA866 Deploys WasabiSeed & Screenshotter Malware

The threat actor tracked as TA866 has resurfaced after a nine-month hiatus with a new large-volume phishing campaign to deliver known malware families such as WasabiSeed and Screenshotter. The campaign, observed earlier this month and blocked by Proofpoint on January 11, 2024, involved sending...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/12/20 12:0 a.m.3 views

PT-2023-8815 · Kofax · Kofax Power Pdf

Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this issue, where the target must...

7.8CVSS7.3AI score0.00421EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/12/20 12:0 a.m.4 views

PT-2023-31854 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where the target must visit a malicious page or open a...

3.3CVSS5.8AI score0.0041EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/11/27 12:0 a.m.4 views

PT-2023-7346 · Foxit · Foxit Pdf Reader

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader versions 12.1.2.15356 Description: The issue is related to a type confusion vulnerability in the way Foxit Reader handles field value properties. This can be triggered by a specially crafted Javascript code inside a malicious...

10CVSS7.9AI score0.01627EPSS
Exploits0References4
OSV
OSV
added 2023/11/23 2:47 a.m.4 views

USN-6508-1 poppler vulnerabilities

It was discovered that poppler incorrectly handled certain malformed PDF files. If a user or an automated system were tricked into opening a specially crafted PDF file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS, Ubuntu...

7.5CVSS7AI score0.00959EPSS
Exploits5References6
Rows per page
Query Builder