Lucene search
+L

66 matches found

nvd
nvd
added 2026/07/07 9:17 p.m.9 views

CVE-2026-53511

calibre is an e-book manager. Prior to 9.10.0, a malicious EPUB, OPF, or PDF file can execute arbitrary Python code when its metadata is read by calibre, including through Add books or Edit books, by embedding a custom column definition with a python: template in calibre:usermetadata that is pass...

8.5CVSS0.00197EPSS
Exploits0References3
debiancve
debiancve
added 2026/07/07 8:46 p.m.5 views

CVE-2026-53511

calibre is an e-book manager. Prior to 9.10.0, a malicious EPUB, OPF, or PDF file can execute arbitrary Python code when its metadata is read by calibre, including through Add books or Edit books, by embedding a custom column definition with a python: template in calibre:usermetadata that is pass...

8.5CVSS6.2AI score0.00197EPSS
Exploits0
cnnvd
cnnvd
added 2026/04/27 12:0 a.m.10 views

Foxit PDF Reader和Foxit PDF Editor 资源管理错误漏洞

Foxit PDF Reader and Foxit PDF Editor are products of Foxit Corporation, a Chinese company. Foxit PDF Reader is a PDF reader. Foxit PDF Editor is a PDF editor. Both Foxit PDF Reader and Foxit PDF Editor have a resource management vulnerability. This vulnerability arises from the special XFA PDF...

5.5CVSS6.1AI score0.00113EPSS
Exploits0References1
githubexploit
githubexploit
added 2026/02/13 5:20 p.m.154 views

Djena_Bertrand

Description This the writeup on the challenges we solved duri...

5.5AI score
Exploits0
nessus
nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : python-pillow-5.1.1-16.el8 (AXSA:2021-2760:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2760:01 advisory. python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25288...

9.8CVSS7.6AI score0.04851EPSS
Exploits0References16
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-42359

Malicious code in bioql PyPI...

5.5CVSS5.4AI score0.00343EPSS
Exploits0References4
nessus
nessus
added 2024/04/29 12:0 a.m.24 views

Fedora 40 : ghc-base64 / ghc-hakyll / ghc-isocline / ghc-toml-parser / gitit / etc (2024-7d83cbccb6)

The remote Fedora 40 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-7d83cbccb6 advisory. Security fix for CVE-2023-35936 and CVE-2023-38745 pandoc: - backport fixes for CVE-2023-35936 and CVE-2023-38745 pandoc-cli: - new package for pand...

6.3CVSS6AI score0.00368EPSS
Exploits1References3
nessus
nessus
added 2024/03/30 12:0 a.m.22 views

Fedora 38 : ghc-base64 / ghc-hakyll / gitit / pandoc / patat (2024-6ad6b9f417)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2024-6ad6b9f417 advisory. Security fix for CVE-2023-35936 and CVE-2023-38745 - pandoc: backport fixes for CVE-2023-35936 and CVE-2023-38745 - base64 now packaged in Fedora...

6.3CVSS6AI score0.00368EPSS
Exploits1References3
mageia
mageia
added 2023/09/24 10:16 p.m.88 views

Updated ghostpcl packages fix security vulnerability

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format. CVE-2023-38560...

5.5CVSS6.7AI score0.00343EPSS
Exploits0References1
nvd
nvd
added 2023/08/01 5:15 p.m.52 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.3AI score0.00343EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2023/08/01 5:15 p.m.24 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS6.1AI score0.00343EPSS
Exploits0References3
prion
prion
added 2023/08/01 5:15 p.m.17 views

Integer overflow

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

1.9CVSS5.3AI score0.00343EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2023/08/01 4:49 p.m.18 views

CVE-2023-38560 Ghostscript: integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.3AI score0.00343EPSS
Exploits0References4
debiancve
debiancve
added 2023/08/01 4:49 p.m.54 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.3AI score0.00343EPSS
Exploits0
cvelist
cvelist
added 2023/08/01 4:49 p.m.60 views

CVE-2023-38560 Ghostscript: integer overflow in pcl/pl/plfont.c:418 in pl_glyph_name

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS5.5AI score0.00343EPSS
Exploits0References4
redhatcve
redhatcve
added 2023/08/01 1:20 p.m.32 views

CVE-2023-38560

An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...

5.5CVSS6.6AI score0.00343EPSS
Exploits0References5
redhatcve
redhatcve
added 2023/07/27 2:54 p.m.32 views

CVE-2023-38745

An arbitrary file write vulnerability was found in Haskell's Pandoc. This issue can be triggered by providing a specially crafted image element in the input when generating files using the --extract-media option or outputting to PDF format. This may allow an attacker to create or overwrite...

5CVSS7AI score0.00368EPSS
Exploits1References3
redhatcve
redhatcve
added 2023/07/27 2:54 p.m.36 views

CVE-2023-35936

An arbitrary file write vulnerability was found in Haskell's Pandoc. This issue can be triggered by providing a specially crafted image element in the input when generating files using the --extract-media option or outputting to PDF format. This may allow an attacker to create or overwrite...

5CVSS5.5AI score0.00368EPSS
Exploits1References4
prion
prion
added 2023/07/25 4:15 a.m.26 views

Path traversal

Pandoc before 3.1.6 allows arbitrary file write: this can be triggered by providing a crafted image element in the input when generating files via the --extract-media option or outputting to PDF format. This allows an attacker to create or overwrite arbitrary files, depending on the privileges of...

2.6CVSS5.3AI score0.00368EPSS
Exploits1References3Affected Software2
ubuntucve
ubuntucve
added 2023/07/25 4:15 a.m.103 views

CVE-2023-38745

Pandoc before 3.1.6 allows arbitrary file write: this can be triggered by providing a crafted image element in the input when generating files via the --extract-media option or outputting to PDF format. This allows an attacker to create or overwrite arbitrary files, depending on the privileges of...

6.3CVSS6.3AI score0.00247EPSS
Exploits0References5
Rows per page
Query Builder