Vulnerabilities > CVE-2022-43295 - Out-of-bounds Write vulnerability in Xpdfreader Xpdf 4.04

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
xpdfreader
CWE-787
NVD
Published: 2022-11-14
Updated: 2022-11-17

Summary

XPDF v4.04 was discovered to contain a stack overflow via the function FileStream::copy() at xpdf/Stream.cc:795.

Vulnerable Configurations

Part Description Count
Application
Xpdfreader
1

Common Weakness Enumeration (CWE)

References