CVE-2025-55151 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, the "convert file to pdf" functionality…
High CVSS: 8.6

CVE-2025-55151

Stirling-PDF is a locally hosted web application that performs various operations on PDF files. Prior to version 1.1.0, the "convert file to pdf" functionality (/api/v1/convert/file/pdf) uses LibreOffice's unoconvert tool for conversion, and SSRF vulnerabilities exist during the conversion process. This issue has been patched in version 1.1.0.
Vendor
Stirlingpdf
Product
Stirling Pdf
CWE
CWE-918
Yayın Tarihi
2025-08-11 22:15:28
Güncelleme
2025-08-15 18:06:27
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-918 Stirling Pdf HIGH Stirlingpdf 2025

Referanslar

https://github.com/Stirling-Tools/Stirling-PDF/commit/7d6b70871bad2a3ff810825f7382c49f55293943 https://github.com/Stirling-Tools/Stirling-PDF/security/advisories/GHSA-76hv-h7g2-xfv3