CVE-2013-4474
EPSS 25.4%
Description
Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.3 allows remote attackers to cause a denial of service (crash) via format string specifiers in a destination filename.
How to fix CVE-2013-4474
To remediate CVE-2013-4474, upgrade the affected package to a fixed version below.
- Debian/poppler—upgrade to 0.18.4-9 or later
Is CVE-2013-4474 being exploited?
Moderate — EPSS is 25.4%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 0.18.4-9