PT-2026-39732 · Vectifyai · Pageindex
Eric-B
·
Published
2026-05-11
·
Updated
2026-05-11
·
CVE-2026-8318
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
VectifyAI PageIndex versions prior to f50e52975313c6716c02b20a119577a1929decba
Description
A security flaw in the PDF Table of Contents Handler component allows a remote attacker to trigger an infinite loop. This issue occurs within the
toc transformer() function located in the pageindex/page index.py file.Recommendations
Update to a version later than f50e52975313c6716c02b20a119577a1929decba.
As a temporary workaround, consider restricting the use of the
toc transformer() function until the update is applied.Exploit
Fix
Infinite Loop
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Pageindex