Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
artifex vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2018-6191
The js_strtod function in jsdtoa.c in Artifex MuJS up to and including 1.0.2 has an integer overflow because of incorrect exponent validation.
Artifex Mujs
1 EDB exploit
1 Github repository
9.8
CVSSv3
CVE-2021-33797
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
Artifex Mujs
5.5
CVSSv3
CVE-2016-8674
The pdf_to_num function in pdf-object.c in MuPDF prior to 1.10 allows remote malicious users to cause a denial of service (use-after-free and application crash) via a crafted file.
Artifex Mupdf
7.8
CVSSv3
CVE-2020-24343
Artifex MuJS up to and including 1.0.7 has a use-after-free in jsrun.c because of unconditional marking in jsgc.c.
Artifex Mujs
7.1
CVSSv3
CVE-2019-14975
Artifex MuPDF prior to 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string.
Artifex Mupdf
7.8
CVSSv3
CVE-2017-15369
The build_filter_chain function in pdf/pdf-stream.c in Artifex MuPDF prior to 2017-09-25 mishandles a certain case where a variable may reside in a register, which allows remote malicious users to cause a denial of service (Fitz fz_drop_imp use-after-free and application crash) o...
Artifex Mupdf
9.8
CVSSv3
CVE-2016-7504
A use-after-free vulnerability was observed in Rp_toString function of Artifex Software, Inc. MuJS prior to 5c337af4b3df80cf967e4f9f6a21522de84b392a. A successful exploitation of this issue can lead to code execution or denial of service condition.
Artifex Mujs
7.5
CVSSv3
CVE-2016-7564
Heap-based buffer overflow in the Fp_toString function in jsfunction.c in Artifex Software MuJS allows malicious users to cause a denial of service (crash) via crafted input.
Artifex Mujs -
7.5
CVSSv3
CVE-2020-22885
Buffer overflow vulnerability in mujs prior to 1.0.8 due to recursion in the GC scanning phase, allows remote malicious users to cause a denial of service.
Artifex Mujs
7.8
CVSSv3
CVE-2017-5628
An issue exists in Artifex Software, Inc. MuJS prior to 8f62ea10a0af68e56d5c00720523ebcba13c2e6a. The MakeDay function in jsdate.c does not validate the month, leading to an integer overflow when parsing a specially crafted JS file.
Artifex Mujs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »