Lucene search
Veracode Vulnerability DatabaseVERACODE:42837HistoryAug 17, 2023 - 2:08 p.m.
Denial Of Service (DoS)
2023-08-1714:08:38
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
libpoppler.so
dos
vulnerability
fofitype1c::converttotype
application crash
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
29.7%
libpoppler.so is vulnerable to Denial Of Service (DoS). The vulnerability exists due to null-pointer deference in the FoFiType1C::convertToType function of fofi/FoFiType1C.cc, allowing an attacker to cause an application crash.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libpoppler.so | le | 110.0.0 | |
| libpoppler.so | le | 110.0.0 |
Related
debiancve
debiancve
CVE-2020-36024
2023-08-11 14:15:11
nessus
nessus
CentOS 8 : poppler (CESA-2024:2979)
2024-05-22 00:00:00
RHEL 8 : poppler (RHSA-2024:2979)
2024-05-23 00:00:00
osv
osv
Moderate: poppler security update
2024-05-22 00:00:00
CVE-2020-36024
2023-08-11 14:15:11
poppler - security update
2023-08-14 00:00:00
cvelist
cvelist
CVE-2020-36024
2023-08-11 00:00:00
oraclelinux
oraclelinux
poppler security update
2024-05-23 00:00:00
cve
cve
CVE-2020-36024
2023-08-11 14:15:11
ubuntucve
ubuntucve
CVE-2020-36024
2023-08-11 00:00:00
almalinux
almalinux
Moderate: poppler security update
2024-05-22 00:00:00
nvd
nvd
CVE-2020-36024
2023-08-11 14:15:11
redhatcve
redhatcve
CVE-2020-36024
2023-08-22 17:49:04
prion
prion
Arbitrary file deletion
2023-08-11 14:15:00
redhat
redhat
(RHSA-2024:2979) Moderate: poppler security update
2024-05-22 06:35:15
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0262)
2023-09-11 00:00:00
Ubuntu: Security Advisory (USN-6299-1)
2023-08-18 00:00:00
Debian: Security Advisory (DLA-3528-1)
2023-08-14 00:00:00
mageia
mageia
Updated poppler packages fix security vulnerability
2023-09-11 16:07:54
debian
debian
[SECURITY] [DLA 3528-1] poppler security update
2023-08-14 12:38:26
ubuntu
ubuntu
poppler vulnerabilities
2023-08-17 00:00:00
amazon
amazon
Medium: poppler
2023-09-27 22:15:00
Medium: poppler
2023-09-27 22:49:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
29.7%
Related for VERACODE:42837