Karakas-online Chm2pdf — known CVE vulnerabilities
Every CVE whose affected-product data names Karakas-online Chm2pdf, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2008-5299 — CVSS 6.9 (medium): chm2pdf 0.9 allows user-assisted local users to delete arbitrary files via a symlink attack on .chm files in the (1) /tmp/chm2pdf/work or…
CVE-2008-5298 — CVSS 2.1 (low): chm2pdf 0.9 uses temporary files in directories with fixed names, which allows local users to cause a denial of service (chm2pdf failure)…