CVE-2024-27342

Name of the Vulnerable Software and Affected Versions Kofax PowerPDF (affected versions not specified)

Description The issue is related to an out-of-bounds write in memory due to improper validation of user-supplied data when parsing PDF files. This can allow an attacker to execute arbitrary code on affected installations by providing a specially crafted PDF file. User interaction is required, such as visiting a malicious page or opening a malicious file. The flaw exists within the parsing of PDF files, allowing an attacker to leverage this issue to execute code in the context of the current process.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.