---

CVE-2020-18972 - log back

CVE-2020-18972 edited at 25 Aug 2021 18:35:07
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Information disclosure
Description	+ Exposure of sensitive information to an unauthorized actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'.
References	+ https://sourceforge.net/p/podofo/tickets/49/ + https://sourceforge.net/p/podofo/tickets/49/attachment/mem-leak

CVE-2020-18972 created at 25 Aug 2021 18:32:54
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes