CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-4338

ocrodjvu 0.4.6-1 on Debian GNU/Linux allows local users to modify arbitrary files via a symlink attack on temporary files that are generated when Cuneiform is invoked as the OCR engine.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.4%

CVSS Severity

CVSS v2 Score 6.2

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598134
http://www.securityfocus.com/bid/45234
https://exchange.xforce.ibmcloud.com/vulnerabilities/64892
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=598134
http://www.securityfocus.com/bid/45234
https://exchange.xforce.ibmcloud.com/vulnerabilities/64892

Products affected by CVE-2010-4338

Jwilk » Ocrodjvu » Version: 0.4.6-1

cpe:2.3:a:jwilk:ocrodjvu:0.4.6-1
Debian » Linux » Version: Any

cpe:2.3:o:debian:linux:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4338

Products

Pricing

Contact Us