CVE-2020-19468: Null Pointer Dereference
First published: Wed Jul 21 2021(Updated: )
An issue has been found in function EmbedStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a null pointer derefenrece (invalid read of size 8) .
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Flowpaper Pdf2json | =0.70 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-19468?
CVE-2020-19468 is a vulnerability found in function EmbedStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a null pointer dereference (invalid read of size 8).
What is the severity of CVE-2020-19468?
The severity of CVE-2020-19468 is medium with a CVSS severity score of 5.5.
What software is affected by CVE-2020-19468?
Flowpaper Pdf2json version 0.70 is affected by CVE-2020-19468.
How can attackers exploit CVE-2020-19468?
Attackers can exploit CVE-2020-19468 by exploiting a null pointer dereference vulnerability in the EmbedStream::getChar function of PDF2JSON 0.70, leading to a Denial of Service.
Is there a fix for CVE-2020-19468?
At the moment, there is no known fix for CVE-2020-19468. It is recommended to stay updated with the latest software patches and security advisories.
- collector/nvd-index
- vendor/flowpaper
- canonical/flowpaper pdf2json
- version/flowpaper pdf2json/0.70