Tungsten Automation Power PDF CVE-2024-9751 (Critical)

2024-11-26

Platform: Tungsten Automation Power PDF

Version: All

Vulnerability: JP2 File Parsing Out-Of-Bounds Read Remote Code Execution

Severity: Critical

Date: November 22, 2024

What Undercode Says:

This critical vulnerability in Tungsten Automation Power PDF allows remote attackers to execute malicious code on vulnerable systems. Attackers can trick users into opening a specially crafted JP2 file or visiting a malicious webpage to exploit this vulnerability.

This vulnerability is caused by the

It is crucial to patch Tungsten Automation Power PDF as soon as possible to mitigate this risk.

Here are some additional points to consider:

This vulnerability was identified by the Zero Day Initiative (ZDI).
No public exploit code is currently available, but it is advisable to patch regardless.

We recommend that users of Tungsten Automation Power PDF update to the latest version as soon as possible to address this critical vulnerability.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top