📦

xpdf

Vendor: glyphandcog

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 1.14% Exploit Prob.

Latest CVE CVE-2019-16927 Sep 27

Security Vulnerability Index

Page 1 / 1

5.5 CVSS

CVE-2019-16927

RCE

Xpdf 4.01.01 has an out-of-bounds write in the vertProfile part of the TextPage::findGaps function in TextOutputDev.cc, a different vulnerability than CVE-2019-9877.

EPSS: 0.86%

Severity: MEDIUM

Sep 27, 2019

5.3 CVSS

CVE-2011-2902

zxpdf in xpdf before 3.02-19 as packaged in Debian unstable and 3.02-12+squeeze1 as packaged in Debian squeeze deletes temporary files insecurely, which allows remote attackers to delete arbitrary files via a crafted .pdf.gz file name.

EPSS: 1.42%

Severity: MEDIUM

Jan 30, 2018

Displaying 2 of 2 Total Entries

Total 1 Sections