Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xpdf vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-38334
XPDF v4.04 and previous versions exists to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc.
Xpdfreader Xpdf
NA
CVE-2022-36561
XPDF v4.0.4 exists to contain a segmentation violation via the component /xpdf/AcroForm.cc:538.
Xpdfreader Xpdf 4.04
NA
CVE-2022-24106
In Xpdf before 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
Glyphandcog Xpdfreader
NA
CVE-2022-24107
Xpdf before 4.04 lacked an integer overflow check in JPXStream.cc.
Glyphandcog Xpdfreader
NA
CVE-2022-38784
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vu...
Freedesktop Poppler
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
NA
CVE-2022-38171
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability...
Xpdfreader Xpdf 4.04
Freedesktop Poppler
1 Github repository
NA
CVE-2022-38228
XPDF commit ffaf11c exists to contain a heap-buffer overflow via DCTStream::transformDataUnit at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
NA
CVE-2022-38229
XPDF commit ffaf11c exists to contain a heap-buffer overflow via DCTStream::readHuffSym(DCTHuffTable*) at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
NA
CVE-2022-38237
XPDF commit ffaf11c exists to contain a heap-buffer overflow via DCTStream::readScan() at /xpdf/Stream.cc.
Xpdf Project Xpdf 3.04
NA
CVE-2022-35104
SWFTools commit 772e55a2 exists to contain a heap-buffer overflow via DCTStream::reset() at /xpdf/Stream.cc.
Swftools Swftools -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »