image credit: pixabay

Code Execution Vulnerabilities Found in Aspose PDF Processing Product

Australia-based Aspose provides APIs for manipulating a wide range of file formats, including Word, PDF, Excel, PowerPoint, Outlook, and OneNote files. Aspose says on its website that its products are used by over 17,500 customers across 114 countries, including 75 percent of Fortune 100 companies.

Talos researchers discovered that Aspose.PDF, which is designed for manipulating and parsing PDF files, is affected by three vulnerabilities that can be exploited to execute arbitrary code by getting the targeted user to open a specially crafted PDF file with the affected application.

Read More on Security Week