Vulnerabilities > Xpdfreader > Xpdf

DATE CVE VULNERABILITY TITLE RISK
2024-08-15 CVE-2024-7868 Use of Uninitialized Resource vulnerability in Xpdfreader Xpdf
In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream can lead to an uninitialized variable in the DCT decoder.
network
low complexity
xpdfreader CWE-908
8.2
8.2
2024-08-15 CVE-2024-7866 Uncontrolled Recursion vulnerability in Xpdfreader Xpdf
In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource leads to infinite recursion and a stack overflow.
local
low complexity
xpdfreader CWE-674
5.5
5.5
2024-08-15 CVE-2024-7867 Integer Overflow or Wraparound vulnerability in Xpdfreader Xpdf
In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow and divide-by-zero.
local
low complexity
xpdfreader CWE-190
6.2
6.2
2024-05-15 CVE-2024-4976 Out-of-bounds Write vulnerability in Xpdfreader Xpdf
Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference.
local
low complexity
xpdfreader CWE-787
5.5
5.5
2024-05-06 CVE-2024-4568 Uncontrolled Recursion vulnerability in Xpdfreader Xpdf
In Xpdf 4.05 (and earlier), a PDF object loop in the PDF resources leads to infinite recursion and a stack overflow.
local
low complexity
xpdfreader CWE-674
5.5
5.5
2024-04-24 CVE-2024-4141 Out-of-bounds Write vulnerability in Xpdfreader Xpdf
Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid character code in a Type 1 font.
local
low complexity
xpdfreader CWE-787
5.5
5.5
2024-04-17 CVE-2024-3900 Out-of-bounds Write vulnerability in Xpdfreader Xpdf
Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by long Unicode sequence in ActualText.
local
low complexity
xpdfreader CWE-787
5.5
5.5
2024-04-02 CVE-2024-3247 Uncontrolled Recursion vulnerability in Xpdfreader Xpdf
In Xpdf 4.05 (and earlier), a PDF object loop in an object stream leads to infinite recursion and a stack overflow.
local
low complexity
xpdfreader CWE-674
5.5
5.5
2024-04-02 CVE-2024-3248 Uncontrolled Recursion vulnerability in Xpdfreader Xpdf
In Xpdf 4.05 (and earlier), a PDF object loop in the attachments leads to infinite recursion and a stack overflow.
local
low complexity
xpdfreader CWE-674
5.5
5.5
2024-03-26 CVE-2024-2971 Out-of-bounds Write vulnerability in Xpdfreader Xpdf
Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by negative object number in indirect reference in the input PDF file.
local
low complexity
xpdfreader CWE-787
5.5
5.5