CVE-2020-22336

CRITICAL

pdfcrack 0.17-0.18 - Remote Code Execution via MD5 Stack Overflow

Title source: llm
STIX 2.1

Description

An issue was discovered in pdfcrack 0.17 thru 0.18, allows attackers to execute arbitrary code via a stack overflow in the MD5 function.

References (2)

Core 2

Scores

CVSS v3 9.8
EPSS 0.0120
EPSS Percentile 64.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-787
Status published
Products (1)
pdfcrack_project/pdfcrack 0.17 - 0.19
Published Jul 06, 2023
Tracked Since Feb 18, 2026