Thecodingmachine: >> Gotenberg Security Vulnerabilities
A directory traversal vulnerability in file upload function of Gotenberg through 6.2.1 allows an attacker to upload and overwrite any writable files outside the intended folder. This can lead to DoS, a change to program behavior, or code execution.
CVSS Score
9.8
EPSS Score
0.01
Published
2021-01-07
An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg through 6.2.1 allows an attacker to overwrite LibreOffice configuration files and execute arbitrary code via macros.
CVSS Score
9.8
EPSS Score
0.006
Published
2021-01-07
Page 3