Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdfreader xpdf vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2018-8107
The JPXStream::close function in JPXStream.cc in xpdf 4.00 allows malicious users to launch denial of service (heap-based buffer over-read and application crash) via a specific pdf file, as demonstrated by pdftohtml.
Xpdfreader Xpdf 4.00
7.5
CVSSv3
CVE-2021-36493
Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows malicious users to crash the application via crafted command.
Xpdfreader Xpdf 4.03
7.8
CVSSv3
CVE-2022-38222
There is a use-after-free issue in JBIG2Stream::close() located in JBIG2Stream.cc in Xpdf 4.04. It can be triggered by sending a crafted PDF file to (for example) the pdfimages binary. It allows an malicious user to cause Denial of Service or possibly have unspecified other impac...
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2021-27548
There is a Null Pointer Dereference vulnerability in the XFAScanner::scanNode() function in XFAScanner.cc in xpdf 4.03.
Xpdfreader Xpdf 4.03
5.5
CVSSv3
CVE-2019-10020
An issue exists in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for x Bresenham parameters.
Xpdfreader Xpdf 4.01.01
5.5
CVSSv3
CVE-2019-10022
An issue exists in Xpdf 4.01.01. There is a NULL pointer dereference in the function Gfx::opSetExtGState in Gfx.cc.
Xpdfreader Xpdf 4.01.01
5.5
CVSSv3
CVE-2019-10024
An issue exists in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for y Bresenham parameters.
Xpdfreader Xpdf 4.01.01
5.5
CVSSv3
CVE-2019-10025
An issue exists in Xpdf 4.01.01. There is an FPE in the function ImageStream::ImageStream at Stream.cc for nBits.
Xpdfreader Xpdf 4.01.01
5.5
CVSSv3
CVE-2019-10026
An issue exists in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec in Function.cc for the psOpRoll case.
Xpdfreader Xpdf 4.01.01
5.5
CVSSv3
CVE-2023-26930
Buffer Overflow vulnerability found in XPDF v.4.04 allows an malicious user to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.”
Xpdfreader Xpdf 4.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »