Lucene search
K

12 matches found

OSV
OSV
added 2022/02/02 12:1 a.m.47 views

GHSA-HHH6-CM2M-3FHC Allocation of Resources Without Limits or Throttling in iText

iText v7.1.17 was discovered to contain an out-of-memory error via the component readStreamBytesRaw, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.5CVSS6.2AI score0.01612EPSS
Exploits1References5
OSV
OSV
added 2022/02/02 12:1 a.m.32 views

GHSA-C32G-2MGR-CFQ7 Out-of-bounds Write in iText

iText v7.1.17 was discovered to contain a stack-based buffer overflow via the component ByteBuffer.append, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.5CVSS6.4AI score0.01502EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/02/02 12:1 a.m.36 views

Out-of-bounds Read in iText

iText v7.1.17 was discovered to contain an out-of-bounds exception via the component ARCFOUREncryption.encryptARCFOUR, which allows attackers to cause a Denial of Service DoS via a crafted PDF file. NOTE: Vendor does not view this as a vulnerability and has not found it to be exploitable...

6.5CVSS5AI score0.00547EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2022/02/01 8:15 p.m.29 views

CVE-2022-24197

iText v7.1.17 was discovered to contain a stack-based buffer overflow via the component ByteBuffer.append, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.5CVSS0.01502EPSS
Exploits1References3
NVD
NVD
added 2022/02/01 8:15 p.m.34 views

CVE-2022-24198

iText v7.1.17 was discovered to contain an out-of-bounds exception via the component ARCFOUREncryption.encryptARCFOUR, which allows attackers to cause a Denial of Service DoS via a crafted PDF file. NOTE: Vendor does not view this as a vulnerability and has not found it to be exploitable...

6.5CVSS0.00547EPSS
Exploits0References2
Prion
Prion
added 2022/02/01 8:15 p.m.16 views

Out-of-bounds

DISPUTED iText v7.1.17 was discovered to contain an out-of-bounds exception via the component ARCFOUREncryption.encryptARCFOUR, which allows attackers to cause a Denial of Service DoS via a crafted PDF file. NOTE: Vendor does not view this as a vulnerability and has not found it to be exploitable...

4.3CVSS6.3AI score0.00547EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/02/01 8:15 p.m.22 views

Design/Logic Flaw

iText v7.1.17, up to exluding": 7.1.18 and 7.2.2 was discovered to contain an out-of-memory error via the component readStreamBytesRaw, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

4.3CVSS6.3AI score0.01612EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2022/02/01 8:15 p.m.20 views

Stack overflow

iText v7.1.17 was discovered to contain a stack-based buffer overflow via the component ByteBuffer.append, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

4.3CVSS6.5AI score0.01502EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2022/02/01 12:0 a.m.28 views

CVE-2022-24196

iText v7.1.17, up to exluding": 7.1.18 and 7.2.2 was discovered to contain an out-of-memory error via the component readStreamBytesRaw, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.5AI score0.01612EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/02/01 12:0 a.m.36 views

CVE-2022-24197

iText v7.1.17 was discovered to contain a stack-based buffer overflow via the component ByteBuffer.append, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.7AI score0.01502EPSS
Exploits1References3
OSV
OSV
added 2022/02/01 12:0 a.m.16 views

CVE-2022-24196

iText v7.1.17, up to exluding": 7.1.18 and 7.2.2 was discovered to contain an out-of-memory error via the component readStreamBytesRaw, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.5CVSS6.3AI score0.01612EPSS
Exploits1References5
OSV
OSV
added 2022/02/01 12:0 a.m.16 views

CVE-2022-24197

iText v7.1.17 was discovered to contain a stack-based buffer overflow via the component ByteBuffer.append, which allows attackers to cause a Denial of Service DoS via a crafted PDF file...

6.5CVSS6.5AI score0.01502EPSS
Exploits1References5
Rows per page
Query Builder