2 matches found
PT-2024-39124 · Unknown · Taxstatement.Jar
Name of the Vulnerable Software and Affected Versions: taxstatement.jar version 2.2.2 taxstatement.jar version 2.2.4 Description: The default settings of the DocumentBuilder allow for an XXE XML External Entity attack when reading XML from PDF codes. This could enable an attacker to deliver a...
CVE-2021-21059
Acrobat Reader DC versions versions 2020.013.20074 and earlier, 2020.001.30018 and earlier and 2017.011.30188 and earlier are affected by a Memory corruption vulnerability when parsing a specially crafted PDF file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary...