In Apache PDFBox 1.8.0 to 1.8.15 and 2.0.0RC1 to 2.0.11, a carefully crafted PDF file can trigger an extremely long running computation when parsing the page tree.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.apache.pdfbox:pdfbox(Maven) | 1.8.0 | 1.8.16 | N/A |
| org.apache.pdfbox:pdfbox(Maven) | 2.0.0 | 2.0.12 | N/A |
CVSS Metrics
