Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-33108
XPDF v4.04 exists to contain a stack overflow vulnerability via the Object::Copy class of object.cc files.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2019-10020
An issue exists in Xpdf 4.01.01. There is an FPE in the function Splash::scaleImageYuXu at Splash.cc for x Bresenham parameters.
Xpdfreader Xpdf 4.01.01
5.5
CVSSv3
CVE-2019-10026
An issue exists in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec in Function.cc for the psOpRoll case.
Xpdfreader Xpdf 4.01.01
5.5
CVSSv3
CVE-2018-7173
A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an malicious user to cause denial of service via a specific file due to inappropriate decoding.
Xpdfreader Xpdf 4.00
5.5
CVSSv3
CVE-2018-7175
An issue exists in xpdf 4.00. A NULL pointer dereference in readCodestream allows an malicious user to cause denial of service via a JPX image with zero components.
Xpdfreader Xpdf 4.00
7.8
CVSSv3
CVE-2022-30524
There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by (for example) sending a crafted pdf file to the pdftotext binary, which allows a remote malici...
Xpdfreader Xpdf 4.0.4
5.5
CVSSv3
CVE-2022-48545
An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02.
Xpdfreader Xpdf 4.02
5.5
CVSSv3
CVE-2018-16369
XRef::fetch in XRef.cc in Xpdf 4.00 allows remote malicious users to cause a denial of service (stack consumption) via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453.
Xpdfreader Xpdf 4.00
5.5
CVSSv3
CVE-2022-30775
xpdf 4.04 allocates excessive memory when presented with crafted input. This can be triggered by (for example) sending a crafted PDF document to the pdftoppm binary. It is most easily reproduced with the DCMAKE_CXX_COMPILER=afl-clang-fast++ option.
Xpdfreader Xpdf 4.04
5.5
CVSSv3
CVE-2022-45587
Stack overflow vulnerability in function gmalloc in goo/gmem.cc in xpdf 4.04, allows local malicious users to cause a denial of service.
Xpdfreader Xpdf 4.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »