An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Information Disclosure
Xpdf
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.3%
Buffer overflow in Platform CLI component in Silicon Labs Gecko SDK v4.2.1 and earlier allows user to overwrite limited structures on the heap. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
Memory Corruption
Buffer Overflow
Gecko Software Development Kit
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.2%