Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
a-pdf vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-14680
ZKTeco ZKTime Web 2.0.1.12280 allows remote malicious users to obtain sensitive employee metadata via a direct request for a PDF document.
Zkteco Zktime Web 2.0.1.12280
1 EDB exploit
6.8
CVSSv2
CVE-2016-4063
Use-after-free vulnerability in Foxit Reader and PhantomPDF prior to 7.3.4 on Windows allows remote malicious users to execute arbitrary code via an object with a revision number of -1 in a PDF document.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
9.3
CVSSv2
CVE-2011-0475
Use-after-free vulnerability in Google Chrome prior to 8.0.552.237 and Chrome OS prior to 8.0.552.344 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a PDF document.
Google Chrome Os
Google Chrome
9.3
CVSSv2
CVE-2012-4914
Stack-based buffer overflow in the reader in CoolPDF 3.0.2.256 allows remote malicious users to execute arbitrary code via a PDF document with a crafted stream.
Coolpdf Coolpdf 3.0.2.256
2 EDB exploits
2.1
CVSSv2
CVE-2007-4701
WebKit on Apple Mac OS X 10.4 up to and including 10.4.10 does not create temporary files securely when Safari is previewing a PDF file, which allows local users to read the contents of that file.
Apple Mac Os X 10.4.5
Apple Mac Os X 10.4.6
Apple Mac Os X Server 10.4.4
Apple Mac Os X Server 10.4.5
Apple Mac Os X 10.4.3
Apple Mac Os X 10.4.4
Apple Mac Os X Server 10.4.2
Apple Mac Os X Server 10.4.3
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.7
Apple Mac Os X 10.4.8
Apple Mac Os X Server 10.4.6
Apple Mac Os X Server 10.4.7
Apple Mac Os X 10.4.10
Apple Mac Os X 10.4.2
Apple Mac Os X 10.4.9
Apple Mac Os X Server 10.4.1
Apple Mac Os X Server 10.4.10
Apple Mac Os X Server 10.4.8
Apple Mac Os X Server 10.4.9
NA
CVE-2023-32385
A denial-of-service issue was addressed with improved memory handling. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. Opening a PDF file may lead to unexpected app termination.
Apple Macos
Apple Iphone Os
Apple Ipados
4.3
CVSSv2
CVE-2018-4107
An issue exists in certain Apple products. macOS prior to 10.13.4 is affected. The issue involves the "PDFKit" component. It allows remote malicious users to bypass intended restrictions on visiting URLs within a PDF document.
Apple Mac Os X
NA
CVE-2022-29851
documentconverter in OX App Suite up to and including 7.10.6, in a non-default configuration with ghostscript, allows OS Command Injection because file conversion may occur for an EPS document that is disguised as a PDF document.
Open-xchange Ox App Suite
6.8
CVSSv2
CVE-2013-1025
Buffer overflow in CoreGraphics in Apple Mac OS X prior to 10.8.5 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via crafted JBIG2 data in a PDF document.
Apple Iphone Os 1.0.1
Apple Iphone Os 1.0.2
Apple Iphone Os 2.0
Apple Iphone Os 2.0.0
Apple Iphone Os 3.0.1
Apple Iphone Os 1.1.2
Apple Iphone Os 1.1.3
Apple Iphone Os 2.1.1
Apple Iphone Os 2.2
Apple Iphone Os 3.2
Apple Iphone Os 3.2.1
Apple Iphone Os 4.2.5
Apple Iphone Os 4.2.8
Apple Iphone Os 5.1
Apple Iphone Os 5.1.1
Apple Iphone Os
Apple Iphone Os 1.0.0
Apple Iphone Os 1.1.4
Apple Iphone Os 1.1.5
Apple Iphone Os 2.2.1
Apple Iphone Os 3.0
Apple Iphone Os 3.2.2
6.8
CVSSv2
CVE-2013-1026
Buffer overflow in ImageIO in Apple Mac OS X prior to 10.8.5 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG2000 data in a PDF document.
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.3
Apple Mac Os X
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Iphone Os 1.0.0
Apple Iphone Os 1.0.1
Apple Iphone Os 1.1.5
Apple Iphone Os 2.0
Apple Iphone Os 3.0
Apple Iphone Os 3.0.1
Apple Iphone Os 4.0
Apple Iphone Os 4.0.1
Apple Iphone Os 4.3.1
Apple Iphone Os 4.3.2
Apple Iphone Os 6.0.1
Apple Iphone Os 6.0.2
Apple Iphone Os 1.1.1
Apple Iphone Os 1.1.2
Apple Iphone Os 2.0.2
Apple Iphone Os 2.1
Apple Iphone Os 2.1.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »