Home / Vulnerability Intelligence / CVE-2026-30276

CVE-2026-30276 - Vulnerability Analysis

CriticalCVSS: 9.8

Last Updated: April 1, 2026

DeftPDF Document Translator - Arbitrary File Overwrite

Published: March 31, 2026Updated: April 1, 2026Remote Exploitable

Overview

DeftPDF Document Translator v54.0 contains an arbitrary file overwrite vulnerability caused by improper handling in the file import process, letting attackers overwrite critical files leading to code execution or information exposure, exploit requires file import capability.

Severity & Score

Severity: Critical

CVSS Score: 9.8

Impact

Attackers can overwrite critical files, leading to arbitrary code execution or exposure of sensitive information.

Mitigation

Update to the latest version of DeftPDF Document Translator.

References

https://deftpdf.com/
https://github.com/Secsys-FDU/AF_CVEs/issues/22
https://secsys.fudan.edu.cn/

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-30276
Severity: Critical
CVSS Score: 9.8
Type: file_system_write
Status: unconfirmed

CWE

CWE-73

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H