2024-11-25
CVE(id): CVE-2024-9749 (LOW)
Vulnerability: PDF File Parsing Out-Of-Bounds Read Information Disclosure
Severity: LOW
Date: November 22, 2024
What Undercode Says:
This vulnerability in Tungsten Automation Power PDF allows remote attackers to disclose sensitive information on affected systems. It is triggered by the software’s improper handling of user-supplied data during PDF file parsing. An attacker could potentially exploit this alongside other vulnerabilities to execute malicious code.
This vulnerability is assigned a LOW severity rating, indicating a limited potential for attackers to leverage it for significant harm. However, it’s still recommended to update Tungsten Automation Power PDF to the latest version that addresses this issue.
References:
Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com
Image Source:
OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.help