Vulnerability Details CVE-2020-23873
pdf2xml v2.0 was discovered to contain a heap-buffer overflow in the function TextPage::dump.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.5%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://cwe.mitre.org/data/definitions/122.html
- https://github.com/Aurorainfinity/Poc/tree/master/pdf2xml
- https://github.com/kermitt2/pdf2xml/issues/11
- https://cwe.mitre.org/data/definitions/122.html
- https://github.com/Aurorainfinity/Poc/tree/master/pdf2xml
- https://github.com/kermitt2/pdf2xml/issues/11
Products affected by CVE-2020-23873
-
cpe:2.3:a:science-miner:pdf2xml:2.0