Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mupdf vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-51104
A floating point exception (divide-by-zero) vulnerability exists in mupdf 1.23.4 in function pnm_binary_read_image() of load-pnm.c when span equals zero.
Artifex Mupdf 1.23.4
7.5
CVSSv3
CVE-2023-51105
A floating point exception (divide-by-zero) vulnerability exists in mupdf 1.23.4 in function bmp_decompress_rle4() of load-bmp.c.
Artifex Mupdf 1.23.4
7.5
CVSSv3
CVE-2023-51106
A floating point exception (divide-by-zero) vulnerability exists in mupdf 1.23.4 in function pnm_binary_read_image() of load-pnm.c when fz_colorspace_n returns zero.
Artifex Mupdf 1.23.4
7.5
CVSSv3
CVE-2023-51107
A floating point exception (divide-by-zero) vulnerability exists in mupdf 1.23.4 in functon compute_color() of jquant2.c.
Artifex Mupdf 1.23.4
7.8
CVSSv3
CVE-2017-15587
An integer overflow exists in pdf_read_new_xref_section in pdf/pdf-xref.c in Artifex MuPDF 1.11.
Artifex Mupdf 1.11
5.5
CVSSv3
CVE-2018-16647
In Artifex MuPDF 1.13.0, the pdf_get_xref_entry function in pdf/pdf-xref.c allows remote malicious users to cause a denial of service (segmentation fault in fz_write_data in fitz/output.c) via a crafted pdf file.
Artifex Mupdf 1.13.0
7.8
CVSSv3
CVE-2016-8729
An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send...
Artifex Mupdf 1.9
7.8
CVSSv3
CVE-2019-13290
Artifex MuPDF 1.15.0 has a heap-based buffer overflow in fz_append_display_node located at fitz/list-device.c, allowing remote malicious users to execute arbitrary code via a crafted PDF file. This occurs with a large BDC property name that overflows the allocated size of a displ...
Artifex Mupdf 1.15.0
5.5
CVSSv3
CVE-2020-21896
A Use After Free vulnerability in svg_dev_text_span_as_paths_defs function in source/fitz/svg-device.c in Artifex Software MuPDF 1.16.0 allows remote malicious users to cause a denial of service via opening of a crafted PDF file.
Artifex Mupdf 1.16.0
7.8
CVSSv3
CVE-2017-14685
Artifex MuPDF 1.11 allows malicious users to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection starting at mupdf+0x000000000016aa61" on Windows. This occurs becau...
Artifex Mupdf 1.11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »