Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

kde okular vulnerabilities and exploits

(subscribe to this query)
5.5
CVSSv3
CVE-2018-1000801
okular version 18.08 and previous versions contains a Directory Traversal vulnerability in function "unpackDocumentArchive(...)" in "core/document.cpp" that can result in Arbitrary file creation on the user workstation. This attack appear to be exploitable via...
Kde OkularDebian Debian Linux 8.0Debian Debian Linux 9.0
5.3
CVSSv3
CVE-2020-9359
KDE Okular prior to 1.10.0 allows code execution via an action link in a PDF document.
Kde OkularDebian Debian Linux 8.0Fedoraproject Fedora 30Fedoraproject Fedora 31Fedoraproject Fedora 32
NA
CVE-2010-2575
Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 up to and including 4.5.0 allows remote malicious users to cause a denial of service (application crash) or...
Kde Kde Sc 4.3.0Kde Kde Sc 4.4.1Kde Kde Sc 4.4.2Kde Kde Sc 4.4.3Kde Kde Sc 4.3.5Kde Kde Sc 4.4.0Kde Kde Sc 4.3.3Kde Kde Sc 4.3.4Kde Kde Sc 4.5.0Kde Kde Sc 4.3.1Kde Kde Sc 4.3.2Kde Kde Sc 4.4.4Kde Kde Sc 4.4.5
NA
CVE-2009-3603
Integer overflow in the SplashBitmap::SplashBitmap function in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.12.1 might allow remote malicious users to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow. NOTE: some of these details are...
Poppler Poppler 0.7.3Poppler Poppler 0.3.2Poppler Poppler 0.10.3Poppler Poppler 0.4.0Poppler Poppler 0.9.3Poppler Poppler 0.10.1Poppler Poppler 0.10.0Poppler Poppler 0.10.7Poppler Poppler 0.7.1Poppler Poppler 0.6.1Poppler Poppler 0.3.1Poppler Poppler 0.11.3Poppler Poppler 0.10.6Foolabs Xpdf 3.02pl3Poppler Poppler 0.5.2Poppler Poppler 0.6.0Poppler Poppler 0.3.3Poppler Poppler 0.4.2Poppler Poppler 0.10.4Poppler Poppler 0.9.2Poppler Poppler 0.6.4Poppler Poppler 0.1.2
NA
CVE-2009-3604
The Splash::drawImage function in Splash.cc in Xpdf 2.x and 3.x prior to 3.02pl4, and Poppler 0.x, as used in GPdf and kdegraphics KPDF, does not properly allocate memory, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arb...
Foolabs Xpdf 3.02pl1Foolabs Xpdf 3.02pl2Foolabs Xpdf 3.02pl3Glyphandcog Xpdfreader 2.00Glyphandcog Xpdfreader 2.01Glyphandcog Xpdfreader 2.02Glyphandcog Xpdfreader 2.03Glyphandcog Xpdfreader 3.00Glyphandcog Xpdfreader 3.01Glyphandcog Xpdfreader 3.02Poppler Poppler 0.1Poppler Poppler 0.1.1Poppler Poppler 0.1.2Poppler Poppler 0.2.0Poppler Poppler 0.3.0Poppler Poppler 0.3.1Poppler Poppler 0.3.2Poppler Poppler 0.3.3Poppler Poppler 0.4.0Poppler Poppler 0.4.1Poppler Poppler 0.4.2Poppler Poppler 0.4.3
NA
CVE-2009-3606
Integer overflow in the PSOutputDev::doImageL1Sep function in Xpdf prior to 3.02pl4, and Poppler 0.x, as used in kdegraphics KPDF, might allow remote malicious users to execute arbitrary code via a crafted PDF document that triggers a heap-based buffer overflow.
Foolabs Xpdf 3.02pl1Foolabs Xpdf 3.02pl2Foolabs Xpdf 3.02pl3Glyphandcog Xpdfreader 3.00Glyphandcog Xpdfreader 3.01Glyphandcog Xpdfreader 3.02Poppler Poppler 0.1Poppler Poppler 0.1.1Poppler Poppler 0.1.2Poppler Poppler 0.2.0Poppler Poppler 0.3.0Poppler Poppler 0.3.1Poppler Poppler 0.3.2Poppler Poppler 0.3.3Poppler Poppler 0.4.0Poppler Poppler 0.4.1Poppler Poppler 0.4.2Poppler Poppler 0.4.3Poppler Poppler 0.4.4Poppler Poppler 0.5.0Poppler Poppler 0.5.1Poppler Poppler 0.5.2
NA
CVE-2009-1188
Integer overflow in the JBIG2 decoding feature in the SplashBitmap::SplashBitmap function in SplashBitmap.cc in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.10.6, as used in GPdf and kdegraphics KPDF, allows remote malicious users to execute arbitrary code or cause a denial o...
Poppler Poppler 0.7.3Poppler Poppler 0.3.2Poppler Poppler 0.10.3Poppler Poppler 0.4.0Poppler Poppler 0.8.5Poppler Poppler 0.9.3Poppler Poppler 0.10.1Poppler Poppler 0.10.0Poppler Poppler 0.7.1Poppler Poppler 0.6.1Poppler Poppler 0.3.1Poppler Poppler 0.5.2Poppler Poppler 0.5.91Poppler Poppler 0.6.0Poppler Poppler 0.3.3Poppler Poppler 0.4.2Poppler Poppler 0.10.4Poppler Poppler 0.9.2Poppler Poppler 0.6.4Poppler Poppler 0.1.2Poppler Poppler 0.8.0Poppler Poppler 0.8.3
NA
CVE-2009-3608
Integer overflow in the ObjectStream::ObjectStream function in XRef.cc in Xpdf 3.x prior to 3.02pl4 and Poppler prior to 0.12.1, as used in GPdf, kdegraphics KPDF, CUPS pdftops, and teTeX, might allow remote malicious users to execute arbitrary code via a crafted PDF document tha...
Foolabs Xpdf 3.02pl1Foolabs Xpdf 3.02pl2Foolabs Xpdf 3.02pl3Glyphandcog Xpdfreader 3.00Glyphandcog Xpdfreader 3.01Glyphandcog Xpdfreader 3.02Poppler PopplerPoppler Poppler 0.1Poppler Poppler 0.1.1Poppler Poppler 0.1.2Poppler Poppler 0.2.0Poppler Poppler 0.3.0Poppler Poppler 0.3.1Poppler Poppler 0.3.2Poppler Poppler 0.3.3Poppler Poppler 0.4.0Poppler Poppler 0.4.1Poppler Poppler 0.4.2Poppler Poppler 0.4.3Poppler Poppler 0.4.4Poppler Poppler 0.5.0Poppler Poppler 0.5.1
NA
CVE-2009-3609
Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf prior to 3.02pl4 and Poppler prior to 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote malicious users to cause a denial of service (application crash) via a crafted PDF docum...
Foolabs Xpdf 3.02pl1Foolabs Xpdf 3.02pl2Foolabs Xpdf 3.02pl3Glyphandcog Xpdfreader 3.00Glyphandcog Xpdfreader 3.01Glyphandcog Xpdfreader 3.02Poppler PopplerPoppler Poppler 0.1Poppler Poppler 0.1.1Poppler Poppler 0.1.2Poppler Poppler 0.2.0Poppler Poppler 0.3.0Poppler Poppler 0.3.1Poppler Poppler 0.3.2Poppler Poppler 0.3.3Poppler Poppler 0.4.0Poppler Poppler 0.4.1Poppler Poppler 0.4.2Poppler Poppler 0.4.3Poppler Poppler 0.4.4Poppler Poppler 0.5.0Poppler Poppler 0.5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook