Vulnerabilities > Podofo Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-02-04 | CVE-2018-20751 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.6 An issue was discovered in crop_page in PoDoFo 0.9.6. | 6.8 |
| 2018-11-26 | CVE-2018-19532 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.6 A NULL pointer dereference vulnerability exists in the function PdfTranslator::setTarget() in pdftranslator.cpp of PoDoFo 0.9.6, while creating the PdfXObject, as demonstrated by podofoimpose. | 6.8 |
| 2018-09-17 | CVE-2018-14320 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Podofo Project Podofo This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. | 4.3 |
| 2018-06-29 | CVE-2018-12982 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Podofo Project Podofo 0.9.6 Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function in PdfVariant.h in PoDoFo 0.9.6-rc1 allows remote attackers to have denial-of-service impact via a crafted file. | 4.3 |
| 2018-05-18 | CVE-2018-11256 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5 An issue was discovered in PoDoFo 0.9.5. | 4.3 |
| 2018-05-18 | CVE-2018-11255 | NULL Pointer Dereference vulnerability in Podofo Project Podofo 0.9.5 An issue was discovered in PoDoFo 0.9.5. | 4.3 |
| 2018-05-18 | CVE-2018-11254 | Uncontrolled Recursion vulnerability in Podofo Project Podofo 0.9.5 An issue was discovered in PoDoFo 0.9.5. | 4.3 |
| 2018-03-09 | CVE-2018-8002 | Infinite Loop vulnerability in Podofo Project Podofo 0.9.5 In PoDoFo 0.9.5, there exists an infinite loop vulnerability in PdfParserObject::ParseFileComplete() in PdfParserObject.cpp which may result in stack overflow. | 6.8 |
| 2018-03-09 | CVE-2018-8001 | Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5 In PoDoFo 0.9.5, there exists a heap-based buffer over-read vulnerability in UnescapeName() in PdfName.cpp. | 6.8 |
| 2018-03-09 | CVE-2018-8000 | Out-of-bounds Write vulnerability in Podofo Project Podofo 0.9.5 In PoDoFo 0.9.5, there exists a heap-based buffer overflow vulnerability in PoDoFo::PdfTokenizer::GetNextToken() in PdfTokenizer.cpp, a related issue to CVE-2017-5886. | 6.8 |