Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/02 8:32 p.m.3 views

CVE-2026-24133

jsPDF is a library to generate PDFs in JavaScript. Prior to 4.1.0, user control of the first argument of the addImage method results in denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful BMP file that results in...

8.7CVSS5.3AI score0.00559EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2025/09/23 6:28 a.m.8 views

Denial Of Service (DoS)

jspdf is vulnerable to Denial of Service DoS. The vulnerability is due to improper handling of unsanitized image data or URLs in the addImage method, which allows an attacker to supply a malicious PNG file that triggers high CPU utilization and denial of service...

8.7CVSS6.6AI score0.00653EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/08/26 4:19 p.m.7 views

GHSA-8MVJ-3J78-4QMW jsPDF Denial of Service (DoS)

Impact User control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful PNG file that results in high CPU utilization and denial of...

8.7CVSS6.7AI score0.00653EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2025/08/26 4:19 p.m.8 views

jsPDF Denial of Service (DoS)

Impact User control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful PNG file that results in high CPU utilization and denial of...

8.7CVSS6.4AI score0.00653EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2025/08/26 4:15 p.m.10 views

CVE-2025-57810

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.2, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful PNG...

8.7CVSS0.00653EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/08/26 3:37 p.m.3 views

CVE-2025-57810 jsPDF Parsing of Corrupt PNGs Leads to Potential Denial of Service (DoS)

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.2, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful PNG...

8.7CVSS6.5AI score0.00653EPSS
Exploits1References4
Rows per page
Query Builder