Itextpdf - Itext CVE

Filtered by vendor Itextpdf Subscribe

Filtered by product Itext

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-43113	1 Itextpdf	1 Itext	2022-01-27	7.5 HIGH	9.8 CRITICAL
iTextPDF in iText 7 and up to 7.1.17 allows command injection via a CompareTool filename that is mishandled on the gs (aka Ghostscript) command line in GhostscriptHelper.java.

Vulnerabilities (CVE)