Publicly disclosed vulnerability in Apache PDFBox.
CVEID: CVE-2018-8036
**Description:**Apache PDFBox is vulnerable to a denial of service, caused by an out of memory exception in AFMParser. By persuading a victim to open a specially-crafted file, a remote attacker could exploit this vulnerability to cause the application to enter into an infinite loop.
**CVSS Base Score:**5.50
CVSS Temporal Score: See <https://exchange.xforce.ibmcloud.com/vulnerabilities/145592> for the current score
**CVSS Environmental Score:***Undefined
**CVSS Vector:**CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
IBM QRadar Incident Forensics 7.2.0 to 7.2.8 Patch 13
IBM QRadar Incident Forensics 7.3.0 to 7.3.1 Patch 6
QRadar / QRM / QVM / QRIF / QNI 7.2.8 Patch 14
QRadar / QRM / QVM / QRIF / QNI 7.3.1 Patch 7
None
CPE | Name | Operator | Version |
---|---|---|---|
ibm security qradar siem | eq | 7.2 | |
ibm security qradar siem | eq | 7.3 |