CNNVD-202512-4069 Information

CNNVD ID

CNNVD-202512-4069

Related CVE

CVE-2025-14401

• CNNVD Published: 2025-12-23

Description (Chinese)

PDFsam Enhanced是PDFsam公司的一个PDF编辑和管理工具。 PDFsam Enhanced存在缓冲区错误漏洞，该漏洞源于处理App对象时缺少对用户提供数据的验证，可能导致越界读取和远程代码执行。

Description (English)

PDFsam Enhanced is a PDF editing and management tool for PDFsam. There is a buffer zone error loophole in PDFsam Enhanced, which arises from the lack of validation of data provided by users when processing App objects, which may lead to cross-border reading and remote code execution.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

PDFsam

Published

2025-12-23

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-1089/