Vulnerabilities > Podofo Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-10 | CVE-2023-31555 | Unspecified vulnerability in Podofo Project Podofo 0.10.0 podofoinfo 0.10.0 was discovered to contain a segmentation violation via the function PoDoFo::PdfObject::DelayedLoad. | 6.5 |
| 2023-05-10 | CVE-2023-31556 | Out-of-bounds Write vulnerability in Podofo Project Podofo 0.10.0 podofoinfo 0.10.0 was discovered to contain a segmentation violation via the function PoDoFo::PdfDictionary::findKeyParent. | 6.5 |
| 2023-05-10 | CVE-2023-31566 | Use After Free vulnerability in Podofo Project Podofo 0.10.0 Podofo v0.10.0 was discovered to contain a heap-use-after-free via the component PoDoFo::PdfEncrypt::IsMetadataEncrypted(). | 8.8 |
| 2023-05-10 | CVE-2023-31567 | Out-of-bounds Write vulnerability in Podofo Project Podofo 0.10.0 Podofo v0.10.0 was discovered to contain a heap buffer overflow via the component PoDoFo::PdfEncryptAESV3::PdfEncryptAESV3. | 8.8 |
| 2023-05-10 | CVE-2023-31568 | Out-of-bounds Write vulnerability in Podofo Project Podofo 0.10.0 Podofo v0.10.0 was discovered to contain a heap buffer overflow via the component PoDoFo::PdfEncryptRC4::PdfEncryptRC4. | 8.8 |
| 2023-04-22 | CVE-2023-2241 | Out-of-bounds Write vulnerability in Podofo Project Podofo 0.10.0 A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0. | 7.8 |
| 2021-08-25 | CVE-2020-18971 | Out-of-bounds Write vulnerability in Podofo Project Podofo 0.9.6 Stack-based Buffer Overflow in PoDoFo v0.9.6 allows attackers to cause a denial of service via the component 'src/base/PdfDictionary.cpp:65'. | 4.3 |
| 2021-08-25 | CVE-2020-18972 | Exposure of Resource to Wrong Sphere vulnerability in Podofo Project Podofo 0.9.6 Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'. | 4.3 |
| 2021-05-26 | CVE-2021-30469 | Use After Free vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. | 5.5 |
| 2021-05-26 | CVE-2021-30470 | Uncontrolled Recursion vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. | 5.5 |