Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf xpdf vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-45587
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local malicious users to cause a denial of service.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-48545
An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02.
Xpdfreader Xpdf 4.02
7.8
CVSSv3
CVE-2022-38928
XPDF 4.04 is vulnerable to Null Pointer Dereference in FoFiType1C.cc:2393.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-43295
XPDF v4.04 exists to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-27135
xpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service (Segmentation fault) or other unspecified effects by sending a crafted PDF file to the pdftoppm binary.
Xpdfreader Xpdf 4.03
5.5
CVSSv3
CVE-2023-26930
Buffer Overflow vulnerability found in XPDF v.4.04 allows an malicious user to cause a Denial of Service via the PDFDoc malloc in the pdftotext.cc function. NOTE: Vendor states “it's an expected abort on out-of-memory error.”
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2018-7173
A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an malicious user to cause denial of service via a specific file due to inappropriate decoding.
Xpdfreader Xpdf 4.00
5.5
CVSSv3
CVE-2018-7174
An issue exists in xpdf 4.00. An infinite loop in XRef::Xref allows an malicious user to cause denial of service because loop detection exists only for tables, not streams.
Xpdfreader Xpdf 4.00
5.5
CVSSv3
CVE-2018-7175
An issue exists in xpdf 4.00. A NULL pointer dereference in readCodestream allows an malicious user to cause denial of service via a JPX image with zero components.
Xpdfreader Xpdf 4.00
5.5
CVSSv3
CVE-2018-18650
An issue exists in Xpdf 4.00. XRef::readXRefStream in XRef.cc allows malicious users to launch a denial of service (Integer Overflow) via a crafted /Size value in a pdf file, as demonstrated by pdftohtml. This is mainly caused by the program attempting a malloc operation for a la...
Xpdfreader Xpdf 4.00
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »