Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdfreader xpdf 4.04 vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2023-3436
Xpdf 4.04 will deadlock on a PDF object stream whose "Length" field is itself in another object stream.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2023-2662
In Xpdf 4.04 (and previous versions), a bad color space object in the input PDF file can cause a divide-by-zero.
Xpdfreader Xpdf
5.5
CVSSv3
CVE-2023-2663
In Xpdf 4.04 (and previous versions), a PDF object loop in the page label tree leads to infinite recursion and a stack overflow.
Xpdfreader Xpdf
5.5
CVSSv3
CVE-2023-2664
In Xpdf 4.04 (and previous versions), a PDF object loop in the embedded file tree leads to infinite recursion and a stack overflow.
Xpdfreader Xpdf
5.5
CVSSv3
CVE-2023-26930
Buffer Overflow vulnerability found in XPDF v.4.04 allows an malicious user to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.”
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-45586
Stack overflow vulnerability in function Dict::find in xpdf/Dict.cc in xpdf 4.04, allows local malicious users to cause a denial of service.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-45587
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local malicious users to cause a denial of service.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-43071
A stack overflow in the Catalog::readPageLabelTree2(Object*) function of XPDF v4.04 allows malicious users to cause a Denial of Service (DoS) via a crafted PDF file.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-43295
XPDF v4.04 exists to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-41843
An issue exists in Xpdf 4.04. There is a crash in convertToType0 in fofi/FoFiType1C.cc, a different vulnerability than CVE-2022-38928.
Xpdfreader Xpdf 4.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »