Security Advisory

CVE-2024-1648

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-20 00:01:50

Last updated 2025-12-03 20:19:12

Assigner Fluid Attacks

State PUBLISHED

Description

electron-pdf version 20.0.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the HTML content entered by the user.

← Browse all CVEs View on cve.org ↗