67 matches found
CVE-2024-41156
CVE-2024-41156 affects Hitachi Energy TRO600 radios; the issue is a command-execution/privilege-leak risk via the Edge Computing UI, with profile files from TRO600 radios exportable in plaintext and encrypted formats. Exploitation requires authenticated write access, enabling access to configurat...
CVE-2024-41156
Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats. Profile files provide potential attackers valuable configuration information about the Tropos network. Profiles can only be exported by authenticated users with higher privilege of write access...
SUSE CVE-2023-3044
An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...
CVE-2023-3044
An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...
CVE-2023-3044
An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...
UBUNTU-CVE-2023-3044
An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...
CVE-2023-3044
An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...
Design/Logic Flaw
An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...
Glyph & Cog XpdfReader 数字错误漏洞
Glyph & Cog XpdfReader is a free PDF viewer and toolkit from Glyph & Cog. Includes text extractor, image converter, HTML converter and more. A security vulnerability exists in Glyph & Cog XpdfReader versions prior to 4.05, which stems from a PDF page that is too large and causes Xpdf's text...
PT-2023-22693 · Xpdf +1 · Xpdf +1
Name of the Vulnerable Software and Affected Versions: Xpdf affected versions not specified Description: An excessively large PDF page size can result in a divide-by-zero in Xpdf's text extraction code. This issue is caused by a very large page size, rather than by a very large character...
DataSurgeon - Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers And More From Text
DataSurgeon ds is a versatile tool designed for incident response, penetration testing, and CTF challenges. It allows for the extraction of various types of sensitive information including emails, phone numbers, hashes, credit cards, URLs, IP addresses, MAC addresses, SRV DNS records and a lot...
PT-2022-7123
Name of the Vulnerable Software and Affected Versions pypdf versions prior to 3.9.0 Description The issue is related to the execution of parse content stream which can lead to an infinite loop if a crafted PDF is used. This can occur, for example, when a user extracts text from such a PDF. The...
GHSA-4FVG-PWV7-V54G Karteek Docsplit vulnerable to OS Command Injection
The extractfromocr function in lib/docsplit/textextractor.rb in the Karteek Docsplit karteek-docsplit gem 0.5.4 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a PDF filename...
PT-2022-20158 · Xpdf +1 · Xpdf +1
Name of the Vulnerable Software and Affected Versions: Xpdf version 4.0.4 Description: The issue is caused by an invalid memory access in the TextLine class in TextOutputDev.cc. This occurs because the text extractor mishandles characters at large y coordinates. It can be triggered by sending a...
CVE-2021-44231
Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...
CVE-2021-44231
Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...
Code injection
Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...
CVE-2021-44231
Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...
CVE-2021-44231
The CVE-2021-44231 issue is linked to SAP NetWeaver AS ABAP (and related ABAP server components) with a code-injection vulnerability in internally used text-extraction reports. The connected Nessus entry for SAP NetWeaver ABAP (3119365) describes a vulnerability where an attacker could inject cod...
PT-2021-24070 · Sap Se +1 · Sap Abap Server & Abap Platform +2
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...