Okular
by KDE
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-1000801 | Med | 0.36 | 5.5 | 0.02 | Sep 6, 2018 | okular version 18.08 and earlier contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via he victim must open a… | ||
| CVE-2020-9359 | 0.00 | — | 0.01 | Mar 24, 2020 | KDE Okular before 1.10.0 allows code execution via an action link in a PDF document. | |||
| CVE-2010-2575 | 0.00 | — | 0.05 | Aug 30, 2010 | Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 through 4.5.0 allows remote attackers to cause a denial of service (application crash) or possibly execute… |
- risk 0.36cvss 5.5epss 0.02
okular version 18.08 and earlier contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via he victim must open a…
- CVE-2020-9359Mar 24, 2020risk 0.00cvss —epss 0.01
KDE Okular before 1.10.0 allows code execution via an action link in a PDF document.
- CVE-2010-2575Aug 30, 2010risk 0.00cvss —epss 0.05
Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 through 4.5.0 allows remote attackers to cause a denial of service (application crash) or possibly execute…