CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 2CVE-2021-30860 – Apple Multiple Products Integer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2021-30860
An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, macOS Big Sur 11.6, watchOS 7.6.2. Processing a maliciously crafted PDF may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Se ha solucionado un desbordamiento de enteros con una validación de entrada mejorada. • https://github.com/jeffssh/CVE-2021-30860 https://github.com/Levilutz/CVE-2021-30860 http://seclists.org/fulldisclosure/2021/Sep/25 http://seclists.org/fulldisclosure/2021/Sep/26 http://seclists.org/fulldisclosure/2021/Sep/27 http://seclists.org/fulldisclosure/2021/Sep/28 http://seclists.org/fulldisclosure/2021/Sep/38 http://seclists.org/fulldisclosure/2021/Sep/39 http://seclists.org/fulldisclosure/2021/Sep/40 http://seclists.org/fulldisclosure/2021/Sep/50 http://ww • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-16927
https://notcve.org/view.php?id=CVE-2019-16927
Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877. Xpdf versión 4.01.01, presenta una escritura fuera de límites en la parte vertProfile de la función TextPage::findGaps en el archivo TextOutputDev.cc, una vulnerabilidad diferente de CVE-2019-9877. • https://forum.xpdfreader.com/viewtopic.php?f=3&t=41885 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-10026
https://notcve.org/view.php?id=CVE-2019-10026
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec in Function.cc for the psOpRoll case. Se ha descubierto un problema en Xpdf 4.01.01. Hay una excepción de punto flotante en la función PostScriptFunction::exec en Function.cc para el caso psOpRoll. • https://forum.xpdfreader.com/viewtopic.php?f=3&t=41276 • CWE-369: Divide By Zero •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-10025
https://notcve.org/view.php?id=CVE-2019-10025
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nBits. Se ha descubierto un problema en Xpdf 4.01.01. Hay una excepción de punto flotante en la función ImageStream::ImageStream en Stream.cc para nBits. • https://forum.xpdfreader.com/viewtopic.php?f=3&t=41274 • CWE-369: Divide By Zero •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-10024
https://notcve.org/view.php?id=CVE-2019-10024
An issue was discovered in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for y Bresenham parameters. Se ha descubierto un problema en Xpdf 4.01.01. Hay una excepción de punto flotante en la función Splash::scaleImageYuXu en Splash.cc para los parámetros y Bresenham. • https://forum.xpdfreader.com/viewtopic.php?f=3&t=41274 • CWE-369: Divide By Zero •