Executive Summary

Informations
NameCVE-2018-19149First vendor Publication2018-11-10
VendorCveLast vendor Modification2019-08-06

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:N/I:N/A:P)
Cvss Base Score4.3Attack RangeNetwork
Cvss Impact Score2.9Attack ComplexityMedium
Cvss Expoit Score8.6AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19149

CWE : Common Weakness Enumeration

%idName
100 %CWE-476NULL Pointer Dereference

CPE : Common Platform Enumeration

TypeDescriptionCount
Application181
Os4

Nessus® Vulnerability Scanner

DateDescription
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-679f8aba03.nasl - Type : ACT_GATHER_INFO
2019-01-03Name : The remote Fedora host is missing a security update.
File : fedora_2018-12b934e224.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/106031
GENTOO https://security.gentoo.org/glsa/201904-04
MISC https://gitlab.freedesktop.org/poppler/poppler/issues/664
REDHAT https://access.redhat.com/errata/RHSA-2019:2022
UBUNTU https://usn.ubuntu.com/3837-1/
https://usn.ubuntu.com/3837-2/

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
DateInformations
2019-08-06 21:19:57
  • Multiple Updates
2019-04-16 17:18:43
  • Multiple Updates
2019-04-02 13:18:56
  • Multiple Updates
2019-03-12 13:19:04
  • Multiple Updates
2018-12-12 17:19:33
  • Multiple Updates
2018-12-11 21:19:44
  • Multiple Updates
2018-12-05 17:19:39
  • Multiple Updates
2018-11-29 17:19:37
  • Multiple Updates
2018-11-11 00:21:15
  • First insertion