CVE-2022-30350
First published: Thu Mar 30 2023(Updated: )
Avanquest Software RAD PDF (PDFEscape Online) 3.19.2.2 is vulnerable to Information Leak / Disclosure. The PDFEscape Online tool provides users with a "white out" functionality for redacting images, text, and other graphics from a PDF document. However, this mechanism does not remove underlying text or PDF object specification information from the PDF. As a result, for example, redacted text may be copy-pasted by a PDF reader.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Avanquest Pdfescape | =3.19.2.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-30350.
What is the severity of CVE-2022-30350?
The severity of CVE-2022-30350 is high with a score of 7.5.
What is the affected software version of CVE-2022-30350?
The affected software version of CVE-2022-30350 is Avanquest Software RAD PDF (PDFEscape Online) 3.19.2.2.
What is the vulnerability description of CVE-2022-30350?
CVE-2022-30350 is an information leak/disclosure vulnerability in Avanquest Software RAD PDF (PDFEscape Online) 3.19.2.2. The "white out" functionality in PDFEscape Online does not remove underlying text, leading to potential information disclosure.
How do I fix CVE-2022-30350?
As a user, make sure to update Avanquest Software RAD PDF (PDFEscape Online) to a secure version once a fix is available.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/avanquest
- canonical/avanquest pdfescape
- version/avanquest pdfescape/3.19.2.2