CVE-2017-2863

HIGH

Infix 7.1.5 - Out-of-bounds Write in PDF Parser

Title source: llm
STIX 2.1

Description

An out-of-bounds write vulnerability exists in the PDF parsing functionality of Infix 7.1.5. A specially crafted PDF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific PDF file to trigger this vulnerability.

References (1)

Core 1
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://talosintelligence.com/vulnerability_reports/TALOS-2017-0367

Scores

CVSS v3 7.8
EPSS 0.0121
EPSS Percentile 65.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (2)
iceni/infix 7.1.5
Iceni/Infix 7.1.5.0
Published Jul 12, 2017
Tracked Since Feb 18, 2026