Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mupdf vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-7264
Use-after-free vulnerability in the fz_subsample_pixmap function in fitz/pixmap.c in Artifex Software, Inc. MuPDF 1.10a allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted document.
Artifex Mupdf 1.10a
5.5
CVSSv3
CVE-2016-10246
Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF prior to 1.10 allows remote malicious users to cause a denial of service (out-of-bounds write) via a crafted file.
Artifex Mupdf
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2016-10247
Buffer overflow in the my_getline function in jstest_main.c in Mujstest in Artifex Software, Inc. MuPDF prior to 1.10 allows remote malicious users to cause a denial of service (out-of-bounds write) via a crafted file.
Artifex Mupdf
Debian Debian Linux 9.0
7.8
CVSSv3
CVE-2017-6060
Stack-based buffer overflow in jstest_main.c in mujstest in Artifex Software, Inc. MuPDF 1.10a allows remote malicious users to have unspecified impact via a crafted image.
Artifex Mupdf 1.10a
Debian Debian Linux 9.0
1 EDB exploit
5.5
CVSSv3
CVE-2016-8674
The pdf_to_num function in pdf-object.c in MuPDF prior to 1.10 allows remote malicious users to cause a denial of service (use-after-free and application crash) via a crafted file.
Artifex Mupdf
5.5
CVSSv3
CVE-2017-5896
Heap-based buffer overflow in the fz_subsample_pixmap function in fitz/pixmap.c in MuPDF 1.10a allows remote malicious users to cause a denial of service (out-of-bounds read and crash) via a crafted image.
Artifex Mupdf
7.5
CVSSv3
CVE-2017-5991
An issue exists in Artifex MuPDF prior to 1912de5f08e90af1d9d0a9791f58ba3afdb9d465. The pdf_run_xobject function in pdf-op-run.c encounters a NULL pointer dereference during a Fitz fz_paint_pixmap_with_mask painting operation. Versions 1.11 and later are unaffected.
Artifex Mupdf
Debian Debian Linux 8.0
Debian Debian Linux 9.0
1 EDB exploit
5.5
CVSSv3
CVE-2016-6265
Use-after-free vulnerability in the pdf_load_xref function in pdf/pdf-xref.c in MuPDF allows remote malicious users to cause a denial of service (crash) via a crafted PDF file.
Artifex Mupdf
Opensuse Leap 42.1
Opensuse Opensuse 13.2
9.8
CVSSv3
CVE-2016-6525
Heap-based buffer overflow in the pdf_load_mesh_params function in pdf/pdf-shade.c in MuPDF allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a large decode array.
Debian Debian Linux 8.0
Artifex Mupdf
NA
CVE-2014-2013
Stack-based buffer overflow in the xps_parse_color function in xps/xps-common.c in MuPDF 1.3 and previous versions allows remote malicious users to execute arbitrary code via a large number of entries in the ContextColor value of the Fill attribute in a Path element.
Artifex Mupdf 1.0
Artifex Mupdf 1.2
Artifex Mupdf 1.1
Artifex Mupdf
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »