CVE-2025-30057
In UHCRTFDoc, the filename parameter can be exploited to execute arbitrary code via command injection into the system() call in the ConvertToPDF function.
More information : https://cert.pl/en/posts/2025/08/CVE-2025-2313/
In UHCRTFDoc, the filename parameter can be exploited to execute arbitrary code via command injection into the system() call in the ConvertToPDF function.
More information : https://cert.pl/en/posts/2025/08/CVE-2025-2313/