OpenDocument Document Vulnerability in Hyland Perceptive Document Filters
CVE-2018-3855

8.8HIGH

Key Information:

Vendor: Hyland Software, Inc.
Status: Perceptive Document Filters
Vendor: CVE Published:; 26 April 2018

🔔 Create Hyland Software, Inc. Vulnerability Alert

What is CVE-2018-3855?

The vulnerability in Hyland Perceptive Document Filters versions 11.4.0.2647 for x86, x64, and Linux systems allows an attacker to exploit a crafted OpenDocument file. This mishandling leads to a double free error in SkCanvas objects, potentially enabling unauthorized code execution on the affected systems. Proper input validation and secure handling of document data are critical to mitigate this risk.

Affected Version(s)

Perceptive Document Filters 11.4.0.2647 - x86/x64 Windows/Linux

References

http://www.securityfocus.com/bid/104023

vdb-entryx_refsource_BID

https://talosintelligence.com/vulnerability_reports/TALOS...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 26, 2018
Vulnerability Reserved
Jan 2, 2018

JSON