PT-2021-19520 · Apache+1 · Apache Pdfbox+1

Published

2021-06-12

·

Updated

2023-10-22

·

CVE-2021-31812

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Apache PDFBox versions 2.0.23 and prior 2.0.x versions
Description A carefully crafted PDF file can cause an infinite loop when loading the file in Apache PDFBox.
Recommendations For Apache PDFBox versions 2.0.23 and prior 2.0.x versions, update to a version that contains a fix for this issue.

Fix

Infinite Loop

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-835CWE-834

Related Identifiers

CVE-2021-31812
GHSA-7GRW-6PJH-JPC9
MGASA-2021-0378
OESA-2021-1256
ROSA-SA-2023-2271

Affected Products

Apache Pdfbox
Debian