CVE-2023-28428
on github
Published
Severity
CVSS v3:
3.3 LOW
CVSS v2:
N/A
Description
PDFio is a C library for reading and writing PDF files. In versions 1.1.0 and prior, a denial of service vulnerability exists in the pdfio parser. Crafted pdf files can cause the program to run at 100% utilization and never terminate. This is different from CVE-2023-24808. A patch for this issue is available in version 1.1.1.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:pdfio_project:pdfio:*:*:*:*:*:*:*:* | n/a | 1.1.1 | * |