CVE-2024-22641 | TCPDF up to 6.6.5 SVG File redos

Inserito da Angelo Barbosa | Mag 28, 2024 | CVE

A vulnerability classified as problematic has been found in TCPDF up to 6.6.5. Affected is an unknown function of the component SVG File Handler. The manipulation leads to inefficient regular expression complexity.

This vulnerability is traded as CVE-2024-22641. The attack needs to be approached within the local network. There is no exploit available.

CVE-2024-22641 | TCPDF up to 6.6.5 SVG File redos

Post correlati

CVE-2024-38288 | R-HUB TurboMeeting up to 8.x Certificate Signing Request command injection (GHSA-gx6g-8mvx-3q5c)

CVE-2024-24293 | bit loader 10.0.3 index.js e prototype pollution

CVE-2024-6328 | MStore API Plugin up to 4.14.7 on WordPress improper authentication

CVE-2023-50943 | Apache Airflow up to 2.8.0 Xcom Data deserialization