📦

pdfalto

Vendor: pdfalto_project

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 2 Remote Access

Total CVEs 4 Total Indexed

Avg. EPSS 0.28% Exploit Prob.

Latest CVE CVE-2022-32324 Jul 01

Security Vulnerability Index

Page 1 / 1

9.8 CVSS

CVE-2022-32324

PDFAlto v0.4 was discovered to contain a heap buffer overflow via the component /pdfalto/src/pdfalto.cc.

EPSS: 0.38%

Severity: CRITICAL

Jul 01, 2022

7.8 CVSS

CVE-2019-9878

There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

EPSS: 0.31%

Severity: HIGH

Mar 21, 2019

7.8 CVSS

CVE-2018-18274

RCE

A issue was found in pdfalto 0.2. There is a heap-based buffer overflow in the TextPage::addAttributsNode function in XmlAltoOutputDev.cc.

EPSS: 0.21%

Severity: HIGH

Oct 12, 2018

7.8 CVSS

CVE-2018-17338

RCE

An issue has been found in pdfalto through 0.2. It is a heap-based buffer overflow in the function TextPage::dump in XmlAltoOutputDev.cc.

EPSS: 0.21%

Severity: HIGH

Sep 23, 2018

Displaying 4 of 4 Total Entries

Total 1 Sections