CVE-2020-36024

An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function.

Published: Aug 11, 2023
Updated: Aug 18, 2023
CVE: CVE-2020-36024
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
freedesktop / poppler	20.12.1	20.12.1.x

https://gitlab.freedesktop.org/poppler/poppler/-/issues/1016
https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html

Vulnerability Database

289,599

CVE-2020-36024