Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-38222
There is a use-after-free issue in JBIG2Stream::close() located in JBIG2Stream.cc in Xpdf 4.04. It can be triggered by sending a crafted PDF file to (for example) the pdfimages binary. It allows an malicious user to cause Denial of Service or possibly have unspecified other impac...
Xpdfreader Xpdf 4.04
NA
CVE-2022-35091
SWFTools commit 772e55a2 exists to contain a floating point exception (FPE) via DCTStream::readMCURow() at /xpdf/Stream.cc.ow()
Swftools Swftools 2021-12-16
NA
CVE-2022-35093
SWFTools commit 772e55a2 exists to contain a global buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc.
Swftools Swftools 2021-12-16
NA
CVE-2022-35094
SWFTools commit 772e55a2 exists to contain a heap-buffer overflow via DCTStream::readHuffSym(DCTHuffTable*) at /xpdf/Stream.cc.
Swftools Swftools 2021-12-16
NA
CVE-2022-35097
SWFTools commit 772e55a2 exists to contain a segmentation violation via FoFiTrueType::writeTTF at /xpdf/FoFiTrueType.cc.
Swftools Swftools 2021-12-16
NA
CVE-2022-35098
SWFTools commit 772e55a2 exists to contain a heap-buffer overflow via GfxICCBasedColorSpace::getDefaultColor(GfxColor*) at /xpdf/GfxState.cc.
Swftools Swftools 2021-12-16
NA
CVE-2022-35099
SWFTools commit 772e55a2 exists to contain a stack overflow via ImageStream::getPixel(unsigned char*) at /xpdf/Stream.cc.
Swftools Swftools 2021-12-16
NA
CVE-2022-38928
XPDF 4.04 is vulnerable to Null Pointer Dereference in FoFiType1C.cc:2393.
Xpdfreader Xpdf 4.04
NA
CVE-2022-38334
XPDF v4.04 and previous versions exists to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc.
Xpdfreader Xpdf
NA
CVE-2022-36561
XPDF v4.0.4 exists to contain a segmentation violation via the component /xpdf/AcroForm.cc:538.
Xpdfreader Xpdf 4.04
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »