2024-11-26
Platform: Tungsten Automation Power PDF
Version: All
Vulnerability: JP2 File Parsing Out-Of-Bounds Read Remote Code Execution
Severity: Critical
Date: November 22, 2024
What Undercode Says:
This critical vulnerability in Tungsten Automation Power PDF allows remote attackers to execute malicious code on vulnerable systems. Attackers can trick users into opening a specially crafted JP2 file or visiting a malicious webpage to exploit this vulnerability.
This vulnerability is caused by the
It is crucial to patch Tungsten Automation Power PDF as soon as possible to mitigate this risk.
Here are some additional points to consider:
This vulnerability was identified by the Zero Day Initiative (ZDI).
No public exploit code is currently available, but it is advisable to patch regardless.
We recommend that users of Tungsten Automation Power PDF update to the latest version as soon as possible to address this critical vulnerability.
References:
Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com
Image Source:
OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.help