CVE-2020-35702 — HIGH (7.8)

Vulnerability Description

DCTStream::getChars in DCTStream.cc in Poppler 20.12.1 has a heap-based buffer overflow via a crafted PDF document. NOTE: later reports indicate that this only affects builds from Poppler git clones in late December 2020, not the 20.12.1 release. In this situation, it should NOT be considered a Poppler vulnerability. However, several third-party Open Source projects directly rely on Poppler git clones made at arbitrary times, and therefore the CVE remains useful to users of those projects

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Freedesktop	Poppler	20.12.1

Related Weaknesses (CWE)

CWE-787

References

https://gitlab.freedesktop.org/poppler/poppler/-/issues/1011ExploitVendor Advisory
https://gitlab.freedesktop.org/poppler/poppler/-/issues/1011ExploitVendor Advisory

FAQ

What is CVE-2020-35702?

CVE-2020-35702 is a vulnerability with a CVSS score of 7.8 (HIGH). DCTStream::getChars in DCTStream.cc in Poppler 20.12.1 has a heap-based buffer overflow via a crafted PDF document. NOTE: later reports indicate that this only affects builds from Poppler git clones i...

How severe is CVE-2020-35702?

CVE-2020-35702 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-35702?

Check the references section above for vendor advisories and patch information. Affected products include: Freedesktop Poppler.