iText v7.1.17 was discovered to contain a stack-based buffer overflow via the component ByteBuffer.append, which allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.
{ "nvd_published_at": "2022-02-01T20:15:00Z", "github_reviewed_at": "2022-02-07T20:59:22Z", "severity": "MODERATE", "github_reviewed": true, "cwe_ids": [ "CWE-787" ] }