4.3
CVE-2010-5110
- EPSS 0.78%
- Veröffentlicht 29.08.2014 16:55:09
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
LoginDCTStream.cc in Poppler before 0.13.3 allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Freedesktop ≫ Poppler Version <= 0.13.2
Freedesktop ≫ Poppler Version0.13.0
Freedesktop ≫ Poppler Version0.13.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.78% | 0.727 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.