Lucene search
K

67 matches found

CVE
CVE
added 2024/10/29 12:44 p.m.49 views

CVE-2024-41156

CVE-2024-41156 affects Hitachi Energy TRO600 radios; the issue is a command-execution/privilege-leak risk via the Edge Computing UI, with profile files from TRO600 radios exportable in plaintext and encrypted formats. Exploitation requires authenticated write access, enabling access to configurat...

2.7CVSS3.9AI score0.00364EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/29 12:44 p.m.12 views

CVE-2024-41156

Profile files from TRO600 series radios are extracted in plain-text and encrypted file formats. Profile files provide potential attackers valuable configuration information about the Tropos network. Profiles can only be exported by authenticated users with higher privilege of write access...

2.7CVSS3.9AI score0.00364EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/06/06 2:16 a.m.4 views

SUSE CVE-2023-3044

An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...

3.3CVSS6.9AI score0.00345EPSS
Exploits1References3
OSV
OSV
added 2023/06/02 11:15 p.m.3 views

CVE-2023-3044

An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...

3.3CVSS6.7AI score0.00345EPSS
Exploits1References2
NVD
NVD
added 2023/06/02 11:15 p.m.13 views

CVE-2023-3044

An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...

3.3CVSS5.3AI score0.00345EPSS
Exploits1References2
OSV
OSV
added 2023/06/02 11:15 p.m.8 views

UBUNTU-CVE-2023-3044

An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...

3.3CVSS6.7AI score0.00345EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2023/06/02 11:15 p.m.23 views

CVE-2023-3044

An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...

3.3CVSS6.7AI score0.00345EPSS
Exploits1References3
Prion
Prion
added 2023/06/02 11:15 p.m.25 views

Design/Logic Flaw

An excessively large PDF page size found in fuzz testing, unlikely in normal PDF files can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate...

1.9CVSS5.2AI score0.01599EPSS
Exploits2References2Affected Software1
CNNVD
CNNVD
added 2023/06/02 12:0 a.m.7 views

Glyph & Cog XpdfReader 数字错误漏洞

Glyph & Cog XpdfReader is a free PDF viewer and toolkit from Glyph & Cog. Includes text extractor, image converter, HTML converter and more. A security vulnerability exists in Glyph & Cog XpdfReader versions prior to 4.05, which stems from a PDF page that is too large and causes Xpdf's text...

3.3CVSS6.1AI score0.00345EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2023/06/02 12:0 a.m.5 views

PT-2023-22693 · Xpdf +1 · Xpdf +1

Name of the Vulnerable Software and Affected Versions: Xpdf affected versions not specified Description: An excessively large PDF page size can result in a divide-by-zero in Xpdf's text extraction code. This issue is caused by a very large page size, rather than by a very large character...

9.1CVSS5.4AI score0.01618EPSS
Exploits22References69
Kitploit
Kitploit
added 2023/03/07 11:30 a.m.95 views

DataSurgeon - Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Secuirty Numbers And More From Text

DataSurgeon ds is a versatile tool designed for incident response, penetration testing, and CTF challenges. It allows for the extraction of various types of sensitive information including emails, phone numbers, hashes, credit cards, URLs, IP addresses, MAC addresses, SRV DNS records and a lot...

7.1AI score
Exploits0References5
Positive Technologies
Positive Technologies
added 2022/06/10 12:0 a.m.5 views

PT-2022-7123

Name of the Vulnerable Software and Affected Versions pypdf versions prior to 3.9.0 Description The issue is related to the execution of parse content stream which can lead to an infinite loop if a crafted PDF is used. This can occur, for example, when a user extracts text from such a PDF. The...

6.2CVSS6AI score0.00352EPSS
Exploits1References24
OSV
OSV
added 2022/05/17 1:36 a.m.22 views

GHSA-4FVG-PWV7-V54G Karteek Docsplit vulnerable to OS Command Injection

The extractfromocr function in lib/docsplit/textextractor.rb in the Karteek Docsplit karteek-docsplit gem 0.5.4 for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a PDF filename...

9.3CVSS7.1AI score0.01793EPSS
Exploits3References5
Positive Technologies
Positive Technologies
added 2022/05/09 12:0 a.m.5 views

PT-2022-20158 · Xpdf +1 · Xpdf +1

Name of the Vulnerable Software and Affected Versions: Xpdf version 4.0.4 Description: The issue is caused by an invalid memory access in the TextLine class in TextOutputDev.cc. This occurs because the text extractor mishandles characters at large y coordinates. It can be triggered by sending a...

9.1CVSS6.3AI score0.01618EPSS
Exploits22References69
ATTACKERKB
ATTACKERKB
added 2021/12/14 4:15 p.m.2 views

CVE-2021-44231

Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...

9.8CVSS7.4AI score0.01294EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2021/12/14 4:15 p.m.25 views

CVE-2021-44231

Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...

9.8CVSS0.01294EPSS
Exploits0References2
Prion
Prion
added 2021/12/14 4:15 p.m.20 views

Code injection

Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...

7.5CVSS9.3AI score0.01294EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2021/12/14 3:44 p.m.27 views

CVE-2021-44231

Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...

9.7AI score0.01294EPSS
Exploits0References2
CVE
CVE
added 2021/12/14 3:44 p.m.64 views

CVE-2021-44231

The CVE-2021-44231 issue is linked to SAP NetWeaver AS ABAP (and related ABAP server components) with a code-injection vulnerability in internally used text-extraction reports. The connected Nessus entry for SAP NetWeaver ABAP (3119365) describes a vulnerability where an attacker could inject cod...

9.8CVSS9.3AI score0.01294EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2021/12/14 12:0 a.m.6 views

PT-2021-24070 · Sap Se +1 · Sap Abap Server & Abap Platform +2

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: Internally used text extraction reports allow an attacker to inject code that can be executed by the application. An attacker could thereby control the behavior of the application...

9.8CVSS9.3AI score0.01294EPSS
Exploits0References4
Rows per page
Query Builder