CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
AI Score
Confidence
High
EPSS
Percentile
15.5%
verapdf is vulnerable to Remote Code Execution (RCE). The vulnerability is caused by executing policy checks using custom schematron files, which invokes an XSL transformation that could lead to code execution.
github.com/veraPDF/veraPDF-library/commit/614ffa477a2cf0819e4b0df1ab133610e0da25fb
github.com/veraPDF/veraPDF-library/commit/9386ecbe1a1d1fb9e886d19df28851ed07890d9f
github.com/veraPDF/veraPDF-library/commit/d5314cbdf4e058e0716f80dbdad2dbd8d96e6bfe
github.com/veraPDF/veraPDF-library/issues/1415
github.com/veraPDF/veraPDF-library/security/advisories/GHSA-qxqf-2mfx-x8jw