📦

xpdfreader

Vendor: glyphandcog

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 5 Remote Access

Total CVEs 84 Total Indexed

Avg. EPSS 3.12% Exploit Prob.

Latest CVE CVE-2021-40226 Nov 10

Security Vulnerability Index

Page 6 / 9

4.3 CVSS

CVE-2009-0147

Multiple integer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2Stream::readSymbolDictSeg, (2) JBIG2Stream::readSymbolDictSeg, and (3) JBIG2Stream::readGenericBitmap.

EPSS: 2.58%

Severity: MEDIUM

Apr 23, 2009

4.3 CVSS

CVE-2009-0146

Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allow remote attackers to cause a denial of service (crash) via a crafted PDF file, related to (1) JBIG2SymbolDict::setBitmap and (2) JBIG2Stream::readSymbolDictSeg.

EPSS: 2.83%

Severity: MEDIUM

Apr 23, 2009

6.9 CVSS

CVE-2009-1144

Untrusted search path vulnerability in the Gentoo package of Xpdf before 3.02-r2 allows local users to gain privileges via a Trojan horse xpdfrc file in the current working directory, related to an unset SYSTEM_XPDFRC macro in a Gentoo build process that uses the poppler library.

EPSS: 0.40%

Severity: MEDIUM

Apr 09, 2009

Displaying 3 of 84 Total Entries

4 5 6 7 8 ... 9

Total 9 Sections