| ID |
CVE-2020-9359
|
| Summary |
KDE Okular before 1.10.0 allows code execution via an action link in a PDF document. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:kde:okular:1.8:*:*:*:*:*:*:*
cpe:2.3:a:kde:okular:1.8:*:*:*:*:*:*:*
-
cpe:2.3:a:kde:okular:1.9:*:*:*:*:*:*:*
cpe:2.3:a:kde:okular:1.9:*:*:*:*:*:*:*
-
cpe:2.3:a:kde:okular:*:*:*:*:*:*:*:*
cpe:2.3:a:kde:okular:*:*:*:*:*:*:*:*
-
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
-
cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
-
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
-
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 6.8 (as of 12-04-2022 - 18:41) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-noinfo |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| NETWORK |
MEDIUM |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
| redhat
via4
|
| advisories | | bugzilla | | id | 1815651 | | title | CVE-2020-9359 okular: local binary execution via specially crafted PDF files |
| | oval | | OR | | comment | Red Hat Enterprise Linux must be installed | | oval | oval:com.redhat.rhba:tst:20070304026 |
| AND | | comment | Red Hat Enterprise Linux 7 is installed | | oval | oval:com.redhat.rhba:tst:20150364027 |
| OR | | AND | | comment | okular is earlier than 0:4.10.5-9.el7 | | oval | oval:com.redhat.rhsa:tst:20204024001 |
| comment | okular is signed with Red Hat redhatrelease2 key | | oval | oval:com.redhat.rhsa:tst:20192022022 |
|
| AND | | comment | okular-devel is earlier than 0:4.10.5-9.el7 | | oval | oval:com.redhat.rhsa:tst:20204024003 |
| comment | okular-devel is signed with Red Hat redhatrelease2 key | | oval | oval:com.redhat.rhsa:tst:20192022024 |
|
| AND | | comment | okular-libs is earlier than 0:4.10.5-9.el7 | | oval | oval:com.redhat.rhsa:tst:20204024005 |
| comment | okular-libs is signed with Red Hat redhatrelease2 key | | oval | oval:com.redhat.rhsa:tst:20192022026 |
|
| AND | | comment | okular-part is earlier than 0:4.10.5-9.el7 | | oval | oval:com.redhat.rhsa:tst:20204024007 |
| comment | okular-part is signed with Red Hat redhatrelease2 key | | oval | oval:com.redhat.rhsa:tst:20192022028 |
|
|
|
|
| | rhsa | | id | RHSA-2020:4024 | | released | 2020-09-29 | | severity | Moderate | | title | RHSA-2020:4024: okular security update (Moderate) |
|
| | rpms | - okular-0:4.10.5-9.el7
- okular-debuginfo-0:4.10.5-9.el7
- okular-devel-0:4.10.5-9.el7
- okular-libs-0:4.10.5-9.el7
- okular-part-0:4.10.5-9.el7
|
|
| refmap
via4
|
| confirm | | | fedora | - FEDORA-2020-7036f54316
- FEDORA-2020-dcde488e68
- FEDORA-2020-e35573f7df
| | gentoo | GLSA-202007-47 | | mlist | [debian-lts-announce] 20200325 [SECURITY] [DLA 2159-1] okular security update |
|
| Last major update |
12-04-2022 - 18:41 |
| Published |
24-03-2020 - 14:15 |
| Last modified |
12-04-2022 - 18:41 |
