ID CVE-2021-31812
Summary In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior 2.0.x versions.
References
Vulnerable Configurations
  • cpe:2.3:a:apache:pdfbox:2.0.0:-:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.0:-:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.0:rc1:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.0:rc1:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.0:rc2:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.0:rc2:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.0:rc3:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.0:rc3:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.5:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.5:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.6:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.6:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.7:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.7:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.8:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.8:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.9:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.9:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.10:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.10:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.11:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.11:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.14:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.14:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.15:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.15:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.16:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.16:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.17:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.17:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.18:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.18:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.19:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.19:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.20:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.20:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.21:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.21:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.22:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.22:*:*:*:*:*:*:*
  • cpe:2.3:a:apache:pdfbox:2.0.23:*:*:*:*:*:*:*
    cpe:2.3:a:apache:pdfbox:2.0.23:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_credit_facilities_process_management:14.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_credit_facilities_process_management:14.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.3.0:*:*:*:*:*:*:*
  • cpe:2.3:o:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*
    cpe:2.3:o:oracle:communications_messaging_server:8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_supply_chain_finance:14.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_supply_chain_finance:14.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_credit_facilities_process_management:14.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_credit_facilities_process_management:14.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_credit_facilities_process_management:14.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_credit_facilities_process_management:14.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.2.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_corporate_lending_process_management:14.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_supply_chain_finance:14.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_supply_chain_finance:14.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:banking_supply_chain_finance:14.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:banking_supply_chain_finance:14.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:18.1:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:retail_customer_management_and_segmentation_foundation:18.1:*:*:*:*:*:*:*
CVSS
Base: 4.3 (as of 25-07-2022 - 18:15)
Impact:
Exploitability:
CWE CWE-835
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:N/I:N/A:P
Last major update 25-07-2022 - 18:15
Published 12-06-2021 - 10:15
Last modified 25-07-2022 - 18:15
Back to Top