CVE-2023-33733: Remote Code Execution

June 5, 2023 (updated November 7, 2023)

Reportlab up to v3.6.12 allows attackers to execute arbitrary code via supplying a crafted PDF file.

References

github.com/c53elyas/CVE-2023-33733
nvd.nist.gov/vuln/detail/CVE-2023-33733

Detect and mitigate CVE-2023-33733 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →