Vulnerabilities > Pikepdf Project > Pikepdf > 2.2.2

DATE CVE VULNERABILITY TITLE RISK
2021-04-01 CVE-2021-29421 XXE vulnerability in multiple products
models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries.
network
low complexity
pikepdf-project fedoraproject CWE-611
7.5
7.5