How severe is CVE-2021-30470?

CVE-2021-30470 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2021-30470

5.5MEDIUM

A flaw was found in PoDoFo 0.9.7. An uncontrolled recursive call among PdfTokenizer::ReadArray(), PdfTokenizer::GetNextVariant() and PdfTokenizer::ReadDataType() functions can lead to a stack overflow

公開日: 5/26/2021更新日: 11/21/2024

説明

A flaw was found in PoDoFo 0.9.7. An uncontrolled recursive call among PdfTokenizer::ReadArray(), PdfTokenizer::GetNextVariant() and PdfTokenizer::ReadDataType() functions can lead to a stack overflow.

AI分析AIによる分析

影響を受ける製品

podofo_projectpodofo

0.9.7

redhatenterprise_linux

7.0

fedoraprojectfedora

参照

https://bugzilla.redhat.com/show_bug.cgi?id=1947436
ExploitIssue TrackingPatchThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1947436
ExploitIssue TrackingPatchThird Party Advisory