CVE-2023-28428 in PDFioinfo

Zusammenfassung

von MITRE • 20.03.2023

PDFio is a C library for reading and writing PDF files. In versions 1.1.0 and prior, a denial of service vulnerability exists in the pdfio parser. Crafted pdf files can cause the program to run at 100% utilization and never terminate. This is different from CVE-2023-24808. A patch for this issue is available in version 1.1.1.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

GitHub, Inc.

Reservieren

15.03.2023

Veröffentlichung

20.03.2023

Moderieren

akzeptiert

Eintrag

VDB-223431

CPE

bereit

CWE

CWE-770 (bestätigt)

CVSS

6.2 (CNA)

EPSS

0.00129

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2023-28428
NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-28428
CVE Details	https://www.cvedetails.com/cve/CVE-2023-28428/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!