Vulnerabilities > Pandoc

DATE CVE VULNERABILITY TITLE RISK
2023-07-25 CVE-2023-38745 Pandoc before 3.1.6 allows arbitrary file write: this can be triggered by providing a crafted image element in the input when generating files via the --extract-media option or outputting to PDF format.
local
high complexity
pandoc debian
6.3
2023-07-05 CVE-2023-35936 Improper Input Validation vulnerability in multiple products
Pandoc is a Haskell library for converting from one markup format to another, and a command-line tool that uses this library.
local
high complexity
pandoc debian CWE-20
5.0