Vulnerabilities > Freedesktop > Poppler > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-22 | CVE-2022-37050 | In Poppler 22.07.0, PDFDoc::savePageAs in PDFDoc.c callows attackers to cause a denial-of-service (application crashes with SIGABRT) by crafting a PDF file in which the xref data structure is mishandled in getCatalog processing. | 6.5 |
| 2023-08-22 | CVE-2022-37051 | Reachable Assertion vulnerability in multiple products An issue was discovered in Poppler 22.07.0. | 6.5 |
| 2023-08-22 | CVE-2022-37052 | Reachable Assertion vulnerability in Freedesktop Poppler 22.07.0 A reachable Object::getString assertion in Poppler 22.07.0 allows attackers to cause a denial of service due to a failure in markObject. | 6.5 |
| 2023-08-22 | CVE-2022-38349 | Reachable Assertion vulnerability in Freedesktop Poppler 22.08.0 An issue was discovered in Poppler 22.08.0. | 6.5 |
| 2023-08-22 | CVE-2020-18839 | Out-of-bounds Write vulnerability in Freedesktop Poppler 0.75.0 Buffer Overflow vulnerability in HtmlOutputDev::page in poppler 0.75.0 allows attackers to cause a denial of service. | 6.5 |
| 2023-08-11 | CVE-2020-36023 | Infinite Loop vulnerability in Freedesktop Poppler 20.12.1 An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::cvtGlyph function. | 6.5 |
| 2023-08-11 | CVE-2020-36024 | NULL Pointer Dereference vulnerability in Freedesktop Poppler 20.12.1 An issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function. | 5.5 |
| 2023-07-31 | CVE-2023-34872 | Unspecified vulnerability in Freedesktop Poppler A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open. | 5.5 |
| 2022-05-05 | CVE-2022-27337 | A logic error in the Hints::Hints function of Poppler v22.03.0 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file. | 6.5 |
| 2020-01-09 | CVE-2012-2142 | Security vulnerability in Poppler and xpdf The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator. | 6.8 |