CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2 matches found

Github Security Blog•added 2024/12/27 6:30 a.m.•18 views

TCPDF missing certificate validation

An issue was discovered in TCPDF before 6.8.0. If libcurl is used, CURLOPTSSLVERIFYHOST and CURLOPTSSLVERIFYPEER are set unsafely...

9.8CVSS6.9AI score0.00253EPSS

Exploits0References5Affected Software1

CVE•added 2024/12/27 12:0 a.m.•800 views

CVE-2024-56521

The CVE-2024-56521 issue affects TCPDF prior to 6.8.0. When libcurl is used, CURLOPT_SSL_VERIFYHOST and CURLOPT_SSL_VERIFYPEER are set unsafely, enabling a high-severity, network‑based impact per CVSS 3.1 data (base score 9.8). Public advisories (e.g., Fedora updates FEDORA-2024-d6b0e72e3d and FE...

9.8CVSS7AI score0.00253EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by