Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdfreader xpdf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-2662
In Xpdf 4.04 (and previous versions), a bad color space object in the input PDF file can cause a divide-by-zero.
Xpdfreader Xpdf
NA
CVE-2023-2663
In Xpdf 4.04 (and previous versions), a PDF object loop in the page label tree leads to infinite recursion and a stack overflow.
Xpdfreader Xpdf
NA
CVE-2023-2664
In Xpdf 4.04 (and previous versions), a PDF object loop in the embedded file tree leads to infinite recursion and a stack overflow.
Xpdfreader Xpdf
NA
CVE-2023-3044
An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large ch...
Xpdfreader Xpdf
1 Github repository
NA
CVE-2022-38334
XPDF v4.04 and previous versions exists to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc.
Xpdfreader Xpdf
4.3
CVSSv2
CVE-2018-7455
An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows malicious users to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.
Xpdfreader Xpdf 4.00
4.3
CVSSv2
CVE-2019-10023
An issue exists in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpMod case.
Xpdfreader Xpdf 4.01.01
4.3
CVSSv2
CVE-2018-18650
An issue exists in Xpdf 4.00. XRef::readXRefStream in XRef.cc allows malicious users to launch a denial of service (Integer Overflow) via a crafted /Size value in a pdf file, as demonstrated by pdftohtml. This is mainly caused by the program attempting a malloc operation for a la...
Xpdfreader Xpdf 4.00
6.8
CVSSv2
CVE-2018-11033
The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf prior to 4.00 allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JPEG data.
Xpdfreader Xpdf 4.00
NA
CVE-2022-41842
An issue exists in Xpdf 4.04. There is a crash in gfseek(_IO_FILE*, long, int) in goo/gfile.cc.
Xpdfreader Xpdf 4.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »