CVE-2023-27655

Published: 23 March 2023

** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2019-9587. Reason: This record is a reservation duplicate of CVE-2019-9587. Notes: All CVE users should reference CVE-2019-9587 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.

Rejected

Severity score breakdown

Parameter	Value
Base score	5.5
Attack vector	Local
Attack complexity	Low
Privileges required	None
User interaction	Required
Scope	Unchanged
Confidentiality	None
Integrity impact	None
Availability impact	High
Vector	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References

http://xpdf.com
https://github.com/keepinggg/poc/tree/main/poc_of_xpdf
https://github.com/keepinggg/poc/blob/main/poc_of_xpdf/id2
https://forum.xpdfreader.com/viewtopic.php?t=42398
http://www.xpdfreader.com/download.html
https://www.cve.org/CVERecord?id=CVE-2023-27655
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE-2023-27655

Severity score breakdown

References

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading