CVE-2018-1338

MEDIUM5.5EPSS 3.0%

Moderate severity vulnerability that affects org.apache.tika:tika-core

Published: 10/17/2018Modified: 4/28/2026
Also known as:DEBIAN-CVE-2018-1338

Description

A carefully crafted (or fuzzed) file can trigger an infinite loop in Apache Tika's BPGParser in versions of Apache Tika before 1.18.

Affected packages (2)

CVSS scores

SourceVersionSeverityVector
osvCVSS 3.1MEDIUM5.5CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References (5)