Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freedesktop poppler 0.24.2 vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv2
CVE-2013-4472
The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and previous versions, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names.
Freedesktop Poppler 0.24.0
Freedesktop Poppler 0.24.2
Freedesktop Poppler 0.24.1
Freedesktop Poppler
7.5
CVSSv2
CVE-2013-4473
Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler prior to 0.24.2 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a source filename.
Freedesktop Poppler 0.22.4
Freedesktop Poppler 0.22.3
Freedesktop Poppler 0.1
Freedesktop Poppler 0.1.1
Freedesktop Poppler 0.11.3
Freedesktop Poppler 0.12.0
Freedesktop Poppler 0.12.1
Freedesktop Poppler 0.12.2
Freedesktop Poppler 0.12.3
Freedesktop Poppler 0.15.0
Freedesktop Poppler 0.15.1
Freedesktop Poppler 0.15.2
Freedesktop Poppler 0.15.3
Freedesktop Poppler 0.18.0
Freedesktop Poppler 0.18.1
Freedesktop Poppler 0.18.2
Freedesktop Poppler 0.18.3
Freedesktop Poppler 0.21.0
Freedesktop Poppler 0.21.1
Freedesktop Poppler 0.21.2
Freedesktop Poppler 0.21.3
Freedesktop Poppler 0.4.4
4.3
CVSSv2
CVE-2017-7511
poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents.
Freedesktop Poppler 0.54.0
Freedesktop Poppler 0.53.0
Freedesktop Poppler 0.52.0
Freedesktop Poppler 0.45.0
Freedesktop Poppler 0.44.0
Freedesktop Poppler 0.37.0
Freedesktop Poppler 0.36.0
Freedesktop Poppler 0.28.1
Freedesktop Poppler 0.28.0
Freedesktop Poppler 0.25.3
Freedesktop Poppler 0.25.2
Freedesktop Poppler 0.24.1
Freedesktop Poppler 0.24.0
Freedesktop Poppler 0.22.3
Freedesktop Poppler 0.22.2
Freedesktop Poppler 0.21.0
Freedesktop Poppler 0.20.5
Freedesktop Poppler 0.19.3
Freedesktop Poppler 0.19.2
Freedesktop Poppler 0.17.4
Freedesktop Poppler 0.17.3
Freedesktop Poppler 0.55.0
5
CVSSv2
CVE-2013-7296
The JBIG2Stream::readSegments method in JBIG2Stream.cc in Poppler prior to 0.24.5 does not use the correct specifier within a format string, which allows context-dependent malicious users to cause a denial of service (segmentation fault and application crash) via a crafted PDF fi...
Freedesktop Poppler 0.23.3
Freedesktop Poppler 0.23.2
Freedesktop Poppler 0.22.0
Freedesktop Poppler 0.21.4
Freedesktop Poppler 0.20.3
Freedesktop Poppler 0.20.2
Freedesktop Poppler 0.19.0
Freedesktop Poppler 0.18.4
Freedesktop Poppler 0.17.2
Freedesktop Poppler 0.17.1
Freedesktop Poppler 0.16.2
Freedesktop Poppler 0.16.1
Freedesktop Poppler 0.14.3
Freedesktop Poppler 0.14.2
Freedesktop Poppler 0.13.0
Freedesktop Poppler 0.12.4
Freedesktop Poppler 0.11.1
Freedesktop Poppler 0.11.0
Freedesktop Poppler 0.10.0
Freedesktop Poppler 0.1.2
Freedesktop Poppler
Freedesktop Poppler 0.24.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started