CVE-2024-46478 — Vulnetix

CVE-2024-46478 PUBLISHED CVSS 9.800000190734863 CRITICAL

HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.

EPSS 0.27% · 50.7th percentile

Risk Scores

CVSS 3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.27%

50.7th percentile

Affected Products

Vendor	Product	Versions
htmldoc_project	htmldoc	1.9.18
n/a	n/a	n/a
htmldoc_project	htmldoc	1.9.18

Exploit Intelligence

https://github.com/michaelrsweet/htmldoc/issues/529 (nist-nvd)
CIRCL seen: CVE-2024-46478 (circl-sighting)
https://github.com/michaelrsweet/htmldoc/commit/683bec548e642cf4a17e003fb34f6bbaf2d27b98 (circl)

Timeline

Oct 24, 2024 CVE Published
Oct 24, 2024 Coalition ESS Score
Oct 25, 2024 EPSS Score
Oct 25, 2024 Coalition ESS Score
Oct 25, 2024 Coalition ESS Score
Oct 25, 2024 CVE Updated
Nov 12, 2024 EPSS Score
Dec 2, 2024 EPSS Score
Dec 20, 2024 EPSS Score
Jan 7, 2025 EPSS Score
Jan 26, 2025 EPSS Score
Feb 13, 2025 EPSS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›