0.007 Low
EPSS
Percentile
79.7%
In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox’s AFMParser.
bugzilla.redhat.com/show_bug.cgi?id=1597490
www.cve.org/CVERecord?id=CVE-2018-8036 https://nvd.nist.gov/vuln/detail/CVE-2018-8036 www.openwall.com/lists/oss-security/2018/06/29/1