Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
poppler poppler vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-38349
An issue exists in Poppler 22.08.0. There is a reachable assertion in Object.h, will lead to denial of service because PDFDoc::replacePageDict in PDFDoc.cc lacks a stream check before saving an embedded file.
Freedesktop Poppler 22.08.0
NA
CVE-2022-37050
In Poppler 22.07.0, PDFDoc::savePageAs in PDFDoc.c callows malicious users to cause a denial-of-service (application crashes with SIGABRT) by crafting a PDF file in which the xref data structure is mishandled in getCatalog processing. Note that this vulnerability is caused by the...
Freedesktop Poppler 22.07.0
Debian Debian Linux 10.0
NA
CVE-2022-37051
An issue exists in Poppler 22.07.0. There is a reachable abort which leads to denial of service because the main function in pdfunite.cc lacks a stream check before saving an embedded file.
Freedesktop Poppler 22.07.0
Debian Debian Linux 10.0
NA
CVE-2022-37052
A reachable Object::getString assertion in Poppler 22.07.0 allows malicious users to cause a denial of service due to a failure in markObject.
Freedesktop Poppler 22.07.0
NA
CVE-2020-23804
Uncontrolled Recursion in pdfinfo, and pdftops in poppler 0.89.0 allows remote malicious users to cause a denial of service via crafted input.
Freedesktop Poppler 0.89.0
Debian Debian Linux 10.0
NA
CVE-2020-18839
Buffer Overflow vulnerability in HtmlOutputDev::page in poppler 0.75.0 allows malicious users to cause a denial of service.
Freedesktop Poppler 0.75.0
NA
CVE-2020-36023
An issue exists in freedesktop poppler version 20.12.1, allows remote malicious users to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::cvtGlyph function.
Freedesktop Poppler 20.12.1
NA
CVE-2020-36024
An issue exists in freedesktop poppler version 20.12.1, allows remote malicious users to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function.
Freedesktop Poppler 20.12.1
NA
CVE-2023-34872
A vulnerability in Outline.cc for Poppler before 23.06.0 allows a remote malicious user to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open.
Freedesktop Poppler
NA
CVE-2022-24106
In Xpdf before 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
Glyphandcog Xpdfreader
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »