EPSS
Percentile
61.4%
github.com/sajari/docconv is vulnerable to remote code execution. Lack of proper checking of exec.Command in PDFHasImage function of the file pdf_ocr.go allows an attacker to upload and execute malicious code on the system under attack.
exec.Command
PDFHasImage
pdf_ocr.go
github.com/Live-Hack-CVE/CVE-2022-4643
github.com/sajari/docconv/commit/b19021ade3d0b71c89d35cb00eb9e589a121faa5
github.com/sajari/docconv/pull/110
github.com/sajari/docconv/releases/tag/v1.2.1
github.com/sajari/docconv/releases/tag/v1.3.5
vuldb.com/?id.216502