How severe is CVE-2023-39505?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.5 out of 10.

What type of vulnerability is CVE-2023-39505?

This is classified as CWE-749, which is a common weakness in software security.

CVE-2023-39505

MEDIUM Year: 2023

CVSS v3 Score

5.5

Medium

Weakness Type

CWE-749

View all →

Vulnerability Description

PDF-XChange Editor Net.HTTP.requests Exposed Dangerous Function Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Net.HTTP.requests method. The issue results from the exposure of a dangerous function. An attacker can leverage this vulnerability to disclose information in the context of the current user. Was ZDI-CAN-20211.

CVE-2020-12912

MEDIUM

CVSS:5.5(Medium)

A potential vulnerability in the AMD extension to Linux "hwmon" service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. ...

CWE-7492020

CVE-2020-27123

MEDIUM

CVSS:5.5(Medium)

A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to read arbitrary files on the under...

CWE-7492020

CVE-2023-39495

MEDIUM

CVSS:5.5(Medium)

PDF-XChange Editor readFileIntoStream Exposed Dangerous Function Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installa...

CWE-7492023

CVE-2010-0738

MEDIUM

CVSS:5.3(Medium)

The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for th...

CWE-7492010

CVE-2025-24361

MEDIUM

CVSS:5.3(Medium)

Nuxt is an open-source web development framework for Vue.js. Source code may be stolen during dev when using version 3.0.0 through 3.15.12 of the webpack builder or version 3.12.2 through 3.152 of the...

CWE-7492025

CVE-2020-10268

MEDIUM

CVSS:6.1(Medium)

Critical services for operation can be terminated from windows task manager, bringing the manipulator to a halt. After this a Re-Calibration of the brakes needs to be performed. Be noted that this onl...

CWE-7492020

CVE-2023-39505

Vulnerability Description

Related Vulnerabilities

CVE-2020-12912

CVE-2020-27123

CVE-2023-39495

CVE-2010-0738

CVE-2025-24361

CVE-2020-10268