Lucene search
+L

66 matches found

nvd
nvd
added 2026/07/07 9:17 p.m.9 views

CVE-2026-53511

calibre is an e-book manager. Prior to 9.10.0, a malicious EPUB, OPF, or PDF file can execute arbitrary Python code when its metadata is read by calibre, including through Add books or Edit books, by embedding a custom column definition with a python: template in calibre:usermetadata that is pass...

8.5CVSS0.00197EPSS
Exploits0References3
debiancve
debiancve
added 2026/07/07 8:46 p.m.5 views

CVE-2026-53511

calibre is an e-book manager. Prior to 9.10.0, a malicious EPUB, OPF, or PDF file can execute arbitrary Python code when its metadata is read by calibre, including through Add books or Edit books, by embedding a custom column definition with a python: template in calibre:usermetadata that is pass...

8.5CVSS6.2AI score0.00197EPSS
Exploits0
cnnvd
cnnvd
added 2026/04/27 12:0 a.m.10 views

Foxit PDF Reader和Foxit PDF Editor 资源管理错误漏洞

Foxit PDF Reader and Foxit PDF Editor are products of Foxit Corporation, a Chinese company. Foxit PDF Reader is a PDF reader. Foxit PDF Editor is a PDF editor. Both Foxit PDF Reader and Foxit PDF Editor have a resource management vulnerability. This vulnerability arises from the special XFA PDF...

5.5CVSS6.1AI score0.00113EPSS
Exploits0References1
githubexploit
githubexploit
added 2026/02/13 5:20 p.m.153 views

Djena_Bertrand

Description This the writeup on the challenges we solved duri...

5.5AI score
Exploits0
nessus
nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : python-pillow-5.1.1-16.el8 (AXSA:2021-2760:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2760:01 advisory. python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25288...

9.8CVSS7.6AI score0.04851EPSS
Exploits0References16
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-42359

Malicious code in bioql PyPI...

5.5CVSS5.4AI score0.00343EPSS
Exploits0References4
nessus
nessus
added 2024/04/29 12:0 a.m.24 views

Fedora 40 : ghc-base64 / ghc-hakyll / ghc-isocline / ghc-toml-parser / gitit / etc (2024-7d83cbccb6)

The remote Fedora 40 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-7d83cbccb6 advisory. Security fix for CVE-2023-35936 and CVE-2023-38745 pandoc: - backport fixes for CVE-2023-35936 and CVE-2023-38745 pandoc-cli: - new package for pand...

6.3CVSS6AI score0.00368EPSS
Exploits1References3
nessus
nessus
added 2024/03/30 12:0 a.m.22 views

Fedora 38 : ghc-base64 / ghc-hakyll / gitit / pandoc / patat (2024-6ad6b9f417)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-6ad6b9f417 advisory. Security fix for CVE-2023-35936 and CVE-2023-38745 - pandoc: backport fixes for CVE-2023-35936 and CVE-2023-38745 - base64 now packaged in Fedora...

6.3CVSS6AI score0.00368EPSS
Exploits1References3
mageia
mageia
added 2023/09/24 10:16 p.m.88 views

Updated ghostpcl packages fix security vulnerability

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format. CVE-2023-38560...

5.5CVSS6.7AI score0.00343EPSS
Exploits0References1
nvd
nvd
added 2023/08/01 5:15 p.m.52 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.3AI score0.00343EPSS
Exploits0References4
prion
prion
added 2023/08/01 5:15 p.m.16 views

Integer overflow

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

1.9CVSS5.3AI score0.00343EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2023/08/01 5:15 p.m.24 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS6.1AI score0.00343EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2023/08/01 4:49 p.m.18 views

CVE-2023-38560 Ghostscript: integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.3AI score0.00343EPSS
Exploits0References4
cvelist
cvelist
added 2023/08/01 4:49 p.m.60 views

CVE-2023-38560 Ghostscript: integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.5AI score0.00343EPSS
Exploits0References4
debiancve
debiancve
added 2023/08/01 4:49 p.m.53 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.3AI score0.00343EPSS
Exploits0
redhatcve
redhatcve
added 2023/08/01 1:20 p.m.31 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS6.6AI score0.00343EPSS
Exploits0References5
redhatcve
redhatcve
added 2023/07/27 2:54 p.m.32 views

CVE-2023-38745

An arbitrary file write vulnerability was found in Haskell's Pandoc. This issue can be triggered by providing a specially crafted image element in the input when generating files using the --extract-media option or outputting to PDF format. This may allow an attacker to create or overwrite...

5CVSS7AI score0.00368EPSS
Exploits1References3
redhatcve
redhatcve
added 2023/07/27 2:54 p.m.36 views

CVE-2023-35936

An arbitrary file write vulnerability was found in Haskell's Pandoc. This issue can be triggered by providing a specially crafted image element in the input when generating files using the --extract-media option or outputting to PDF format. This may allow an attacker to create or overwrite...

5CVSS5.5AI score0.00368EPSS
Exploits1References4
ubuntucve
ubuntucve
added 2023/07/25 4:15 a.m.103 views

CVE-2023-38745

Pandoc before 3.1.6 allows arbitrary file write: this can be triggered by providing a crafted image element in the input when generating files via the --extract-media option or outputting to PDF format. This allows an attacker to create or overwrite arbitrary files, depending on the privileges of...

6.3CVSS6.3AI score0.00247EPSS
Exploits0References5
prion
prion
added 2023/07/25 4:15 a.m.26 views

Path traversal

Pandoc before 3.1.6 allows arbitrary file write: this can be triggered by providing a crafted image element in the input when generating files via the --extract-media option or outputting to PDF format. This allows an attacker to create or overwrite arbitrary files, depending on the privileges of...

2.6CVSS5.3AI score0.00368EPSS
Exploits1References3Affected Software2
Rows per page
Query Builder