Lucene search
K

102 matches found

NVD
NVD
added 2023/11/26 11:15 p.m.15 views

CVE-2023-6298

A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability affects the function main of the file PdfDocument.java. The manipulation leads to improper validation of array index. The attack can be initiated remotely. The exploit has been disclosed to the public an...

6.5CVSS0.01101EPSS
Exploits1References4
NVD
NVD
added 2023/11/26 11:15 p.m.22 views

CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS0.00942EPSS
Exploits0References4
OSV
OSV
added 2023/11/26 11:15 p.m.22 views

CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS6.7AI score
Exploits0References4
Prion
Prion
added 2023/11/26 11:15 p.m.21 views

Design/Logic Flaw

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

5CVSS7AI score0.00942EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2023/11/26 11:15 p.m.14 views

Input validation

A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability affects the function main of the file PdfDocument.java. The manipulation leads to improper validation of array index. The attack can be initiated remotely. The exploit has been disclosed to the public an...

5CVSS6.9AI score0.01101EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCve
added 2023/11/26 11:15 p.m.37 views

CVE-2023-6298

A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability affects the function main of the file PdfDocument.java. The manipulation leads to improper validation of array index. The attack can be initiated remotely. The exploit has been disclosed to the public an...

6.5CVSS5.3AI score0.01101EPSS
Exploits1References2
OSV
OSV
added 2023/11/26 11:15 p.m.3 views

UBUNTU-CVE-2023-6298

A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability affects the function main of the file PdfDocument.java. The manipulation leads to improper validation of array index. The attack can be initiated remotely. The exploit has been disclosed to the public an...

6.5CVSS4.8AI score0.01101EPSS
Exploits1References3
OSV
OSV
added 2023/11/26 11:15 p.m.2 views

UBUNTU-CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS4.9AI score0.00942EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2023/11/26 11:15 p.m.44 views

CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS5.3AI score0.00942EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/11/26 11:0 p.m.28 views

CVE-2023-6299 Apryse iText Reference Table PdfDocument.java memory leak

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

5CVSS6.7AI score0.00942EPSS
Exploits0References4
CVE
CVE
added 2023/11/26 11:0 p.m.65 views

CVE-2023-6299

CVE-2023-6299 affects Apryse iText 8.0.1, with a memory leak in PdfDocument.java’s Reference Table Handler. The issue could be triggered remotely and has public exploits. The vendor fixed it in iText Core 8.0.2 (released Oct 25, 2023); upgrading to 8.0.2 or later is recommended.

6.5CVSS5.4AI score0.00942EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2023/11/26 11:0 p.m.57 views

CVE-2023-6298

CVE-2023-6298 affects Apryse iText 8.0.2, specifically the main function in PdfDocument.java, causing improper validation of an array index (out-of-bounds). The vulnerability can be triggered remotely and an exploit has been disclosed, though the real existence is publicly doubted by some sources...

6.5CVSS5.3AI score0.01101EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2023/11/26 11:0 p.m.33 views

CVE-2023-6298 Apryse iText PdfDocument.java main array index

A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability affects the function main of the file PdfDocument.java. The manipulation leads to improper validation of array index. The attack can be initiated remotely. The exploit has been disclosed to the public an...

5CVSS6.6AI score0.01101EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/11/26 12:0 a.m.6 views

Apryse iText Security Vulnerability

iText is an open source library for creating and manipulating PDF files in Java. It is written by Bruno Lowagie, Paulo Soares and others. A security vulnerability exists in Apryse iText version 8.0.2, which stems from some unknown handling of the file PdfDocument.java in the component Reference...

6.5CVSS6.8AI score0.00942EPSS
Exploits0References5
CNNVD
CNNVD
added 2023/11/26 12:0 a.m.5 views

iText Input Validation Error Vulnerability

iText is an open source library for creating and manipulating PDF files in Java. It is written by Bruno Lowagie, Paulo Soares and others. An input validation error vulnerability exists in Apryse iText version 8.0.2, which stems from a problem in the main function of the PdfDocument.java file,...

6.5CVSS6.9AI score0.01101EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/11/26 12:0 a.m.6 views

PT-2023-32598 · Apryse · Apryse Itext

Name of the Vulnerable Software and Affected Versions: Apryse iText version 8.0.2 Description: A vulnerability was found in the function main of the file PdfDocument.java, which affects the improper validation of array index. The attack can be initiated remotely. The real existence of this...

6.5CVSS5.4AI score0.01101EPSS
Exploits1References13
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/09 10:58 a.m.35 views

Security Bulletin: Vulnerability in iText affects IBM Process Mining . CVE-2022-24197

Summary There is a vulnerability in iText that could allow a remote attacker to execute a denial of service. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details CVEID:CVE-2022-24197 DESCRIPTION: iText is...

6.5CVSS6.9AI score0.01502EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/09 10:55 a.m.34 views

Security Bulletin: Vulnerability in iText affects IBM Process Mining . CVE-2022-24196

Summary There is a vulnerability in iText that could allow a remote attacker to execute a denial of service. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details CVEID:CVE-2022-24196 DESCRIPTION: iText is...

6.5CVSS6.7AI score0.01612EPSS
Exploits1Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:27 a.m.3 views

SUSE CVE-2022-24196

iText v7.1.17, up to exluding": 7.1.18 and 7.2.2 was discovered to contain an out-of-memory error via the component readStreamBytesRaw, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.5CVSS6.4AI score0.01612EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:27 a.m.2 views

SUSE CVE-2022-24198

iText v7.1.17 was discovered to contain an out-of-bounds exception via the component ARCFOUREncryption.encryptARCFOUR, which allows attackers to cause a Denial of Service DoS via a crafted PDF file. NOTE: Vendor does not view this as a vulnerability and has not found it to be exploitable...

6.5CVSS7.1AI score0.00547EPSS
Exploits0References3
Rows per page
Query Builder