CVE Catalog

CVE-2026-57535

LowCVSS 2.1
Published: Updated: Translated: NVD NIST

Summary

The vulnerability allows injection of HTML content, including <img> tags, into PDF rendering contexts. If the src attribute of such an image points to a URL, the PDF rendering engine downloads the image from that location and displays it, leading to information disclosure about the rendering server and potentially creating an SSRF vector in the local network.

Risk Assessment

The risk includes leakage of sensitive server information (e.g., IP address, network configuration) and the possibility of conducting an SSRF attack, which could allow an attacker to scan or access internal network resources.

Recommendation

It is recommended to immediately update the software to a version that fixes this vulnerability and to restrict the ability to inject HTML content into PDF rendering contexts by validating input data.

Original NVD description (English source)

Content injected to PDF rendering contexts could, in many places, include HTML content including <img> tags. If the src attribute of these images pointed to an URL, the PDF rendering engine would download the image from that place and display it, thereby leaking information about the rendering server and possibly creating an SSRF vector in the local network.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS