Vulnerabilities > Podofo Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-26	CVE-2021-30471	Uncontrolled Recursion vulnerability in multiple products A flaw was found in PoDoFo 0.9.7. local low complexity podofo-project redhat fedoraproject CWE-674	5.5
2021-05-26	CVE-2021-30472	Out-of-bounds Write vulnerability in Podofo Project Podofo 0.9.7 A flaw was found in PoDoFo 0.9.7. local low complexity podofo-project CWE-787	7.8
2019-12-30	CVE-2019-20093	NULL Pointer Dereference vulnerability in multiple products The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file, because of ImageExtractor.cpp. local low complexity podofo-project fedoraproject CWE-476	5.5
2019-04-03	CVE-2019-10723	Allocation of Resources Without Limits or Throttling vulnerability in Podofo Project Podofo 0.9.6 An issue was discovered in PoDoFo 0.9.6. local low complexity podofo-project CWE-770	5.5
2019-03-11	CVE-2019-9687	Out-of-bounds Write vulnerability in multiple products PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp. network low complexity podofo-project fedoraproject CWE-787 critical	9.8
2019-02-27	CVE-2018-20797	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Podofo Project Podofo 0.9.6 An issue was discovered in PoDoFo 0.9.6. network low complexity podofo-project CWE-119	6.5
2019-02-26	CVE-2019-9199	NULL Pointer Dereference vulnerability in multiple products PoDoFo::Impose::PdfTranslator::setSource() in pdftranslator.cpp in PoDoFo 0.9.6 has a NULL pointer dereference that can (for example) be triggered by sending a crafted PDF file to the podofoimpose binary. network low complexity podofo-project fedoraproject CWE-476	8.8
2019-02-04	CVE-2018-20751	NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.6 An issue was discovered in crop_page in PoDoFo 0.9.6. network low complexity podofo-project CWE-476	8.8
2018-11-26	CVE-2018-19532	NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.6 A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. network low complexity podofo-project CWE-476	8.8
2018-09-17	CVE-2018-14320	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Podofo Project Podofo This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. network low complexity podofo-project CWE-119	6.5

Vulnerabilities > Podofo Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Podofo Project"}]}

Vulnerabilities > Podofo Project