Vulnerabilities > Podofo Project > Podofo > 0.10.0

DATE CVE VULNERABILITY TITLE RISK
2023-05-10 CVE-2023-31555 Unspecified vulnerability in Podofo Project Podofo 0.10.0
podofoinfo 0.10.0 was discovered to contain a segmentation violation via the function PoDoFo::PdfObject::DelayedLoad.
network
low complexity
podofo-project
6.5
2023-05-10 CVE-2023-31556 Out-of-bounds Write vulnerability in Podofo Project Podofo 0.10.0
podofoinfo 0.10.0 was discovered to contain a segmentation violation via the function PoDoFo::PdfDictionary::findKeyParent.
network
low complexity
podofo-project CWE-787
6.5
2023-05-10 CVE-2023-31566 Use After Free vulnerability in Podofo Project Podofo 0.10.0
Podofo v0.10.0 was discovered to contain a heap-use-after-free via the component PoDoFo::PdfEncrypt::IsMetadataEncrypted().
network
low complexity
podofo-project CWE-416
8.8
2023-05-10 CVE-2023-31567 Out-of-bounds Write vulnerability in Podofo Project Podofo 0.10.0
Podofo v0.10.0 was discovered to contain a heap buffer overflow via the component PoDoFo::PdfEncryptAESV3::PdfEncryptAESV3.
network
low complexity
podofo-project CWE-787
8.8
2023-05-10 CVE-2023-31568 Out-of-bounds Write vulnerability in Podofo Project Podofo 0.10.0
Podofo v0.10.0 was discovered to contain a heap buffer overflow via the component PoDoFo::PdfEncryptRC4::PdfEncryptRC4.
network
low complexity
podofo-project CWE-787
8.8
2023-04-22 CVE-2023-2241 Classic Buffer Overflow vulnerability in Podofo Project Podofo 0.10.0
A vulnerability, which was classified as critical, was found in PoDoFo 0.10.0.
local
low complexity
podofo-project CWE-120
5.3