CVE-2024-56522

Publication date

2024-12-27 00:00:00

Family

mitre

State

PUBLISHED

Description

An issue was discovered in TCPDF before 6.8.0. unserializeTCPDFtag uses != (aka loose comparison) and does not use a constant-time function to compare TCPDF tag hashes.