PT-2018-16249 · Hyland · Hyland Perceptive Document Filters
Published
2018-04-26
·
Updated
2022-11-29
·
CVE-2018-3855
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Hyland Perceptive Document Filters version 11.4.0.2647
Description
A crafted OpenDocument document can lead to a SkCanvas object double free, resulting in direct code execution.
Recommendations
For version 11.4.0.2647, consider avoiding the use of crafted OpenDocument documents until a patch is available. As a temporary workaround, restrict the processing of OpenDocument files to minimize the risk of exploitation.
Exploit
Fix
Double Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hyland Perceptive Document Filters