cbcvebase.
CVE-2014-9527
published 2015-01-06

CVE-2014-9527: HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.

medium5CVSS 3.1
AVNACLAuNCNINAP
HSLFSlideShow in Apache POI before 3.11 allows remote attackers to cause a denial of service (infinite loop and deadlock) via a crafted PPT file.

Affected

3 ranges
VendorProductVersion rangeFixed in
apachepoi<= 3.11
debianlibapache-poi-java< libapache-poi-java 3.10.1-2 (bookworm)libapache-poi-java 3.10.1-2 (bookworm)
fedoraprojectfedora

CVSS provenance

nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM