Vulnerability feed

Vulnerability

CVE-2024-4367

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-4367
Description:: A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.
Last updated date:: 06/10/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/20/2024
Reference url to background: https://github.com/LOURC0D3/CVE-2024-4367-PoC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/20/2024
Reference url to background: https://github.com/s4vvysec/CVE-2024-4367-POC

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/22/2024
Reference url to background: https://github.com/spaceraccoon/detect-cve-2024-4367

Type:: exploit
Confidence:: HIGH
Date of publishing:: 05/22/2024
Reference url to background: https://github.com/clarkio/pdfjs-vuln-demo

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/13/2024
Reference url to background: https://github.com/Zombie-Kaiser/cve-2024-4367-PoC-fixed

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/17/2024
Reference url to background: https://github.com/snyk-labs/pdfjs-vuln-demo

Type:: exploit
Confidence:: HIGH
Date of publishing:: 06/19/2024
Reference url to background: https://github.com/UnHackerEnCapital/PDFernetRemotelo

Vulnerability Feed Contributors About Blog

@inTheWild

©2024 |