CNNVD-202507-2025 Information
CNNVD ID
CNNVD-202507-2025
Related CVE
- CNNVD Published: 2025-07-15
Description (Chinese)
Burnaware PDF Shaper是Burnaware公司的一款PDF处理软件。 Burnaware PDF Shaper 3.5版本和3.6版本存在安全漏洞,该漏洞源于转换PDF文件时边界检查不当,可能导致缓冲区溢出。
Description (English)
Burnaware PDF Shaper is a PDF processing software from Burnaware. There is a security loophole in Burnaware PDF Shaper, version 3.5 and version 3.6, which stems from inadequate border checks during the conversion of PDF documents, which could lead to a spill out of the buffer zone.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Burnaware
Published
2025-07-15
Last Modified
2026-02-24
References
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/shaper_pdf_bof.rb https://www.exploit-db.com/exploits/37760 https://www.pdfshaper.com/ https://vulners.com/vulnerlab/VULNERABLE:1579 https://www.vulncheck.com/advisories/pdf-shaper-buffer-overflow-via-convert-to-image-feature https://nvd.nist.gov/vuln/detail/CVE-2025-34106
Patch
https://www.pdfshaper.com/download.html
Share on: