Vulnerabilities > CVE-2020-18972 - Exposure of Resource to Wrong Sphere vulnerability in Podofo Project Podofo 0.9.6
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |