Vulnerability

CVE-2021-31811

 Report advisory or correction

CVSS Score 5.5 medium

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWE

CWE-770

References

https://lists.apache.org/thread.html/re3bd16f0cc8f1fbda46b06a4b8241cd417f71402809baa81548fc20e@%3Cusers.pdfbox.apache.org%3E
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-31811

[CVE-2021-31811] CWE-770: Allocation of Resources Without Limits or Throttling

Description

In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.

See org.apache.pdfbox/pdfbox package information