7.5
CVSS
📦
xpdfreader
Vendor: glyphandcog
Actively Exploited
0
CISA KEV List
PoC / Exploits
0
Code Available
Total RCEs
5
Remote Access
Total CVEs
84
Total Indexed
Avg. EPSS
3.12%
Exploit Prob.
Security Vulnerability Index
Page 1 / 9
7.8
CVSS
Xpdf prior to 4.04 lacked an integer overflow check in JPXStream.cc.
Severity: HIGH
7.8
CVSS
In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
Severity: HIGH
5.5
CVSS
Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor.
Severity: MEDIUM
7.8
CVSS
In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in IdentityFunction::transform in Function.cc, used by GfxAxialShading::getColor. It can, for example, be triggered by sending a crafted PDF document to the pdftoppm tool. It allows an attacker to use a crafted PDF file to cause Denial of Service or possibly unspecified other impact.
Severity: HIGH
5.5
CVSS
Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc.
Severity: MEDIUM
5.5
CVSS
Xpdf 2.00 allows a SIGSEGV in XRef::constructXRef in XRef.cc. NOTE: 2.00 is a version from November 2002.
Severity: MEDIUM
5.5
CVSS
An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read.
Severity: MEDIUM
5.5
CVSS
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 2.
Severity: MEDIUM
5.5
CVSS
An issue was discovered in Xpdf 4.01.01. There is an out of bounds read in the function GfxPatchMeshShading::parse at GfxState.cc for typeA!=6 case 1.
Severity: MEDIUM