CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-21896

A Use After Free vulnerability in svg_dev_text_span_as_paths_defs function in source/fitz/svg-device.c in Artifex Software MuPDF 1.16.0 allows remote attackers to cause a denial of service via opening of a crafted PDF file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.7%

CVSS Severity

CVSS v3 Score 5.5

References

http://www.ghostscript.com/cgi-bin/findgit.cgi?8719e07834d6a72b6b4131539e49ed1e8e2ff79e
https://bugs.ghostscript.com/show_bug.cgi?id=701294
https://bugs.ghostscript.com/show_bug.cgi?id=701294

Products affected by CVE-2020-21896

Artifex » Mupdf » Version: 1.16.0

cpe:2.3:a:artifex:mupdf:1.16.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-21896

Products

Pricing

Contact Us