Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
605
VMScore

CVE-2018-19532

Published: 26/11/2018 Updated: 19/12/2018
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Podofo

Vulnerability Summary

A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. It allows an malicious user to cause Denial of Service.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

podofo project podofo 0.9.6

Vendor Advisories

Debian CVElist Bug Report Logs: libpodofo: CVE-2018-12982
Debian Bug report logs - #916581 libpodofo: CVE-2018-12982 Package: src:libpodofo; Maintainer for src:libpodofo is Mattia Rizzolo <mattia@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 16 Dec 2018 10:03:02 UTC Severity: important Tags: fixed-upstream, patch, security, upstream Found in ...
Debian CVElist Bug Report Logs: libpodofo: CVE-2018-11254
Debian Bug report logs - #916585 libpodofo: CVE-2018-11254 Package: src:libpodofo; Maintainer for src:libpodofo is Mattia Rizzolo <mattia@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 16 Dec 2018 10:27:03 UTC Severity: important Tags: fixed-upstream, security, upstream Found in versio ...
Debian CVElist Bug Report Logs: libpodofo: CVE-2018-19532
Debian Bug report logs - #916085 libpodofo: CVE-2018-19532 Package: src:libpodofo; Maintainer for src:libpodofo is Mattia Rizzolo <mattia@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 9 Dec 2018 21:24:04 UTC Severity: important Tags: fixed-upstream, security, upstream Found in versio ...
Debian CVElist Bug Report Logs: libpodofo: CVE-2018-14320
Debian Bug report logs - #916240 libpodofo: CVE-2018-14320 Package: src:libpodofo; Maintainer for src:libpodofo is Mattia Rizzolo <mattia@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 11 Dec 2018 20:27:01 UTC Severity: important Tags: fixed-upstream, patch, security, upstream Found in ...
Debian CVElist Bug Report Logs: libpodofo: CVE-2018-5783
Debian Bug report logs - #916142 libpodofo: CVE-2018-5783 Package: src:libpodofo; Maintainer for src:libpodofo is Mattia Rizzolo <mattia@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 10 Dec 2018 16:21:02 UTC Severity: important Tags: fixed-upstream, security, upstream Found in version ...
Debian CVElist Bug Report Logs: libpodofo: CVE-2018-11256
Debian Bug report logs - #916583 libpodofo: CVE-2018-11256 Package: src:libpodofo; Maintainer for src:libpodofo is Mattia Rizzolo <mattia@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 16 Dec 2018 10:18:01 UTC Severity: important Tags: fixed-upstream, security, upstream Found in versio ...
Arch Linux Issues:
A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslatorcpp of PoDoFo 096, while creating the PdfXObject, as demonstrated by podofoimpose It allows an attacker to cause Denial of Service ...

References

CWE-476https://sourceforge.net/p/podofo/tickets/32/https://research.loginsoft.com/bugs/null-pointer-dereference-vulnerability-in-pdftranslatorsettarget-podofo-0-9-6/https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916581
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook