Vulnerability Details CVE-2024-22640
TCPDF version <=6.6.5 is vulnerable to ReDoS (Regular Expression Denial of Service) if parsing an untrusted HTML page with a crafted color.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.2%
CVSS Severity
CVSS v3 Score 7.5
References
- https://github.com/tecnickcom/TCPDF
- https://github.com/zunak/CVE-2024-22640
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LIB3R2WB7XPW2I4PGVMZ3VLFLRHOK4RB/
- https://github.com/tecnickcom/TCPDF
- https://github.com/zunak/CVE-2024-22640
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LIB3R2WB7XPW2I4PGVMZ3VLFLRHOK4RB/
Products affected by CVE-2024-22640
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.121
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.122
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.123
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.124
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.125
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.126
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.127
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.128
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.129
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.130
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.131
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.132
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.133
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.134
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.135
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.136
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.137
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.138
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.139
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.140
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.141
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.142
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.143
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.144
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.145
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.146
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.147
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.148
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.149
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.150
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.151
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.152
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.153
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.154
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.155
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.156
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.157
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.158
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.159
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.160
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.161
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.162
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.163
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.164
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.165
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.166
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.167
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.168
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.169
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.170
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.171
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.172
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.173
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.174
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.175
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.176
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.177
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.178
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.179
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.180
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.181
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.182
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.183
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.184
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.185
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.186
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.187
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.188
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.189
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.190
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.191
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.192
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.193
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.194
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.195
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.196
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.197
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.198
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.199
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.200
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.201
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.202
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.203
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.204
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.205
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.206
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.207
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.208
-
cpe:2.3:a:tcpdf_project:tcpdf:5.9.209
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.000
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.001
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.002
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.003
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.004
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.005
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.006
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.007
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.008
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.009
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.010
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.011
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.012
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.013
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.014
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.015
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.016
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.017
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.018
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.019
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.020
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.021
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.022
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.023
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.024
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.025
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.026
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.027
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.028
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.029
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.030
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.031
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.032
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.033
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.034
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.035
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.036
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.037
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.038
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.039
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.040
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.041
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.042
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.043
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.044
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.045
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.046
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.047
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.048
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.050
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.051
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.052
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.053
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.054
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.055
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.056
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.057
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.058
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.059
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.060
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.061
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.062
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.063
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.064
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.065
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.066
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.067
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.068
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.069
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.070
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.071
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.072
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.073
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.074
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.075
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.076
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.077
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.078
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.079
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.080
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.081
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.082
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.083
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.084
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.085
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.086
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.087
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.088
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.089
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.090
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.091
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.092
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.093
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.094
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.095
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.096
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.097
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.098
-
cpe:2.3:a:tcpdf_project:tcpdf:6.0.099
-
cpe:2.3:a:tcpdf_project:tcpdf:6.1.0
-
cpe:2.3:a:tcpdf_project:tcpdf:6.1.1
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.0
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.1
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.10
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.11
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.12
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.13
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.16
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.17
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.19
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.2
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.20
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.21
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.22
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.23
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.25
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.26
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.3
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.4
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.5
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.6
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.7
-
cpe:2.3:a:tcpdf_project:tcpdf:6.2.8
-
cpe:2.3:a:tcpdf_project:tcpdf:6.3.0
-
cpe:2.3:a:tcpdf_project:tcpdf:6.3.1
-
cpe:2.3:a:tcpdf_project:tcpdf:6.3.2
-
cpe:2.3:a:tcpdf_project:tcpdf:6.3.3
-
cpe:2.3:a:tcpdf_project:tcpdf:6.3.4
-
cpe:2.3:a:tcpdf_project:tcpdf:6.3.5
-
cpe:2.3:a:tcpdf_project:tcpdf:6.4.0
-
cpe:2.3:a:tcpdf_project:tcpdf:6.4.1
-
cpe:2.3:a:tcpdf_project:tcpdf:6.4.2
-
cpe:2.3:a:tcpdf_project:tcpdf:6.4.3
-
cpe:2.3:a:tcpdf_project:tcpdf:6.4.4
-
cpe:2.3:a:tcpdf_project:tcpdf:6.5.0
-
cpe:2.3:a:tcpdf_project:tcpdf:6.6.0
-
cpe:2.3:a:tcpdf_project:tcpdf:6.6.1
-
cpe:2.3:a:tcpdf_project:tcpdf:6.6.2
-
cpe:2.3:a:tcpdf_project:tcpdf:6.7.4
-
cpe:2.3:o:fedoraproject:fedora:40