CVE-2024-4367

Description: A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability affects Firefox < 126, Firefox ESR < 115.11, and Thunderbird < 115.11.

Link: Visit the GitHub Repository

Language: Astro

Owner: Bhavyakcwestern

Stars: 0

Forks: 0