25 matches found
itextpdf-5.5.13.4-1.1 on GA media (moderate)
itextpdf-5.5.13.4-1.1 on GA media Announcement ID: openSUSE-SU-2025:15739-1 Rating: moderate Cross-References: CVE-2024-29857 CVSS scores: CVE-2024-29857 SUSE : 5.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now ...
OPENSUSE-SU-2025:15739-1 itextpdf-5.5.13.4-1.1 on GA media
These are all security issues fixed in the itextpdf-5.5.13.4-1.1 package on the GA media of openSUSE Tumbleweed...
EUVD-2021-2524
Malware in sbrugna...
CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
OPENSUSE-SU-2024:11980-1 itextpdf-5.5.13.3-1.1 on GA media
These are all security issues fixed in the itextpdf-5.5.13.3-1.1 package on the GA media of openSUSE Tumbleweed...
br.net.woodstock.rockframework:rockframework-core (>=1.2.1 <=1.2.2), com.alanpoi:alanpoi-all (>=1.3.5 <=3.0.0) +126 more potentially affected by CVE-2024-29857 via org.bouncycastle:bcprov-jdk14 (>=1.38 <=1.77)
org.bouncycastle:bcprov-jdk14 MAVEN version =1.38, =1.2.1, =1.3.5, =1.3.5, =2.0, =1.0, =1.6.1.P24, =1.7, =0.0.1, =1.0, =1.1 - com.github.lkkushan101.RestAssuredPDFReport:com.github.lkkushan101.RestAssuredPDFReport =1.00 - com.github.lkkushan101.appiumlocator:com.github.lkkushan101.appiumlocator...
SUSE CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
aero.m-click:mcpdf (>=0.2.0 <=0.2.1), at.iem:sysson_2.11 (>=1.13.0 <=1.16.0) +348 more potentially affected by CVE-2017-9096 via com.itextpdf:itextpdf (>=5.0.6 <=5.5.11)
com.itextpdf:itextpdf MAVEN version =5.0.6, =0.2.0, =1.13.0, =1.13.0, =2.0.0, =1.2.1, =3.0.0, =2.0.0, =1.0, =1.1.4, =1.1.4, =1.1.4, =1.1.6 and more Source cves: CVE-2017-9096 Source advisory: OSV:GHSA-86P9-X5PW-94QX...
Denial Of Service (DoS)
com.itextpdf, kernel is vulnerable to denial of service. The vulnerability exists in readDictionary component in PdfReader.javafile which allows an attacker to crash the system via a crafted PDF file...
Command injection in itext7-core
iTextPDF in iText before 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
aero.m-click:mcpdf (>=0.2.0 <=0.2.6), at.iem:sysson_2.11 (>=1.13.0 <=1.17.0) +710 more potentially affected by CVE-2021-43113 via com.itextpdf:itextpdf (>=5.0.6 <=5.5.13.2)
com.itextpdf:itextpdf MAVEN version =5.0.6, =0.2.0, =1.13.0, =1.13.0, =2.0.0, =1.2.1, =3.0.0, =2.0.0, =0.7, =0.7, =1.1.5, =1.5.1.beta and more Source cves: CVE-2021-43113 Source advisory: OSV:GHSA-GV87-Q66H-4277...
aero.m-click:mcpdf (>=0.2.0 <=0.2.6), at.iem:sysson_2.11 (>=1.13.0 <=1.17.0) +710 more potentially affected by CVE-2021-43113 via com.itextpdf:itextpdf (>=5.0.6 <=5.5.13.2)
com.itextpdf:itextpdf MAVEN version =5.0.6, =0.2.0, =1.13.0, =1.13.0, =2.0.0, =1.2.1, =3.0.0, =2.0.0, =0.7, =0.7, =1.1.5, =1.5.1.beta and more Source cves: CVE-2021-43113 Source advisory: SNYK:JAVA-COMITEXTPDF-15674470...
Command Injection
Overview com.itextpdf:itextpdf is a software developer toolkit that allows users to integrate PDF functionalities within their applications, processes or products. Affected versions of this package are vulnerable to Command Injection. An attacker controlling the filename passed to the CompareTool...
CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
DEBIAN-CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
UBUNTU-CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
Command injection
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...
CVE-2021-43113
iTextPDF in iText 7 and up to excluding 4.4.13.3 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs aka Ghostscript command line in GhostscriptHelper.java...