Lucene search
K

69 matches found

OSV
OSV
added 2022/04/19 9:15 p.m.4 views

CVE-2022-27527

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files. It was fixed in PDFTron earlier than 9.0.7 version in Autodesk Navisworks 2022, and 2020...

7.8CVSS6.2AI score0.00483EPSS
Exploits0References1
Prion
Prion
added 2022/04/19 9:15 p.m.19 views

Memory corruption

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files. It was fixed in PDFTron earlier than 9.0.7 version in Autodesk Navisworks 2022, and 2020...

4.4CVSS7.8AI score0.00483EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/19 9:15 p.m.4 views

CVE-2022-27527

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files. It was fixed in PDFTron earlier than 9.0.7 version in Autodesk Navisworks 2022, and 2020...

7.8CVSS6.3AI score0.00483EPSS
Exploits0References2
CVE
CVE
added 2022/04/19 8:26 p.m.98 views

CVE-2022-27527

CVE-2022-27527 affects Autodesk Navisworks (2022 and 2020) via a memory corruption vulnerability in embedded PDFTron code. The root cause is memory corruption triggered by malicious DLLs, enabling code execution with the attacker’s context if PDFTron components are pre–9.0.7. Affected setup: PDFT...

7.8CVSS7.8AI score0.00483EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/04/19 8:26 p.m.31 views

CVE-2022-27527

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files. It was fixed in PDFTron earlier than 9.0.7 version in Autodesk Navisworks 2022, and 2020...

8.1AI score0.00483EPSS
Exploits0References1
NVD
NVD
added 2022/03/10 5:46 p.m.15 views

CVE-2022-24960

A use after free vulnerability was discovered in PDFTron SDK version 9.2.0. A crafted PDF can overwrite RIP with data previously allocated on the heap. This issue affects: PDFTron PDFTron SDK 9.2.0 on OSX; 9.2.0 on Linux; 9.2.0 on Windows...

7.8CVSS0.00567EPSS
Exploits0References2
OSV
OSV
added 2022/03/10 5:46 p.m.5 views

CVE-2022-24960

A use after free vulnerability was discovered in PDFTron SDK version 9.2.0. A crafted PDF can overwrite RIP with data previously allocated on the heap. This issue affects: PDFTron PDFTron SDK 9.2.0 on OSX; 9.2.0 on Linux; 9.2.0 on Windows...

7.8CVSS5.5AI score0.00567EPSS
Exploits0References2
Prion
Prion
added 2022/03/10 5:46 p.m.11 views

Design/Logic Flaw

A use after free vulnerability was discovered in PDFTron SDK version 9.2.0. A crafted PDF can overwrite RIP with data previously allocated on the heap. This issue affects: PDFTron PDFTron SDK 9.2.0 on OSX; 9.2.0 on Linux; 9.2.0 on Windows...

4.3CVSS7.7AI score0.00567EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/03/10 12:0 a.m.6 views

PDFTron SDK 资源管理错误漏洞

PDFTron SDK is a very comprehensive MS Office and PDF software development kit SDK from PDFTron Canada. A security vulnerability exists in PDFTron SDK 9.2.0, which stems from the fact that a carefully crafted PDF can overwrite the RIP with data previously allocated on the heap...

7.8CVSS7.3AI score0.00567EPSS
Exploits0References3
CVE
CVE
added 2022/03/09 6:20 a.m.96 views

CVE-2022-24960

CVE-2022-24960 is a use-after-free in PDFTron SDK 9.2.0. A crafted PDF can overwrite RIP with data previously allocated on the heap, affecting PDFTron SDK 9.2.0 on macOS, Linux, and Windows. No remediation or fixes are provided in the available documents.

7.8CVSS7AI score0.00567EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/03/09 6:20 a.m.18 views

CVE-2022-24960 Use after free vulnerability in PDFTron SDK

A use after free vulnerability was discovered in PDFTron SDK version 9.2.0. A crafted PDF can overwrite RIP with data previously allocated on the heap. This issue affects: PDFTron PDFTron SDK 9.2.0 on OSX; 9.2.0 on Linux; 9.2.0 on Windows...

6.5CVSS7.8AI score0.00567EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/08 8:30 a.m.9 views

CVE-2022-24960

A use after free vulnerability was discovered in PDFTron SDK version 9.2.0. A crafted PDF can overwrite RIP with data previously allocated on the heap. This issue affects: PDFTron PDFTron SDK 9.2.0 on OSX; 9.2.0 on Linux; 9.2.0 on Windows...

7.8CVSS5.8AI score0.00567EPSS
Exploits0References3
NVD
NVD
added 2021/12/23 7:15 p.m.15 views

CVE-2021-40161

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7 version...

7.8CVSS0.01437EPSS
Exploits0References1
OSV
OSV
added 2021/12/23 7:15 p.m.3 views

CVE-2021-40160

PDFTron prior to 9.0.7 version may be forced to read beyond allocated boundaries when parsing a maliciously crafted PDF file. This vulnerability can be exploited to execute arbitrary code...

7.8CVSS6AI score0.0154EPSS
Exploits0References1
OSV
OSV
added 2021/12/23 7:15 p.m.4 views

CVE-2021-40161

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7 version...

7.8CVSS6.2AI score0.01437EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/12/23 7:15 p.m.4 views

CVE-2021-40161

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7 version...

7.8CVSS7.6AI score0.01437EPSS
Exploits0References2
NVD
NVD
added 2021/12/23 7:15 p.m.36 views

CVE-2021-40160

PDFTron prior to 9.0.7 version may be forced to read beyond allocated boundaries when parsing a maliciously crafted PDF file. This vulnerability can be exploited to execute arbitrary code...

7.8CVSS0.0154EPSS
Exploits0References1
Prion
Prion
added 2021/12/23 7:15 p.m.14 views

Memory corruption

A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDFTron earlier than 9.0.7 version...

4.4CVSS7.8AI score0.01437EPSS
Exploits0References1Affected Software13
Prion
Prion
added 2021/12/23 7:15 p.m.22 views

Code injection

PDFTron prior to 9.0.7 version may be forced to read beyond allocated boundaries when parsing a maliciously crafted PDF file. This vulnerability can be exploited to execute arbitrary code...

6.8CVSS7.7AI score0.0154EPSS
Exploits0References1Affected Software13
CVE
CVE
added 2021/12/23 6:31 p.m.82 views

CVE-2021-40161

Summary (CVE-2021-40161) : The issue affects PDFTron software; memory corruption can enable remote code execution when processing PDFs containing malicious DLL references. Root cause is errors in the mechanism that checks the path to dynamically loaded libraries (DLLs). Affected products are PDFT...

7.8CVSS7.8AI score0.01437EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder