Vulnerabilities > CVE-2022-27135 - Out-of-bounds Write vulnerability in Xpdfreader Xpdf 4.03

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL

Summary

xpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service (Segmentation fault) or other unspecified effects by sending a crafted PDF file to the pdftoppm binary.

Vulnerable Configurations

Part Description Count
Application
Xpdfreader
1

Common Weakness Enumeration (CWE)