Vulnerabilities > Xpdfreader > Xpdf > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-15 | CVE-2024-7866 | Uncontrolled Recursion vulnerability in Xpdfreader Xpdf In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource leads to infinite recursion and a stack overflow. | 5.5 |
| 2024-08-15 | CVE-2024-7867 | Integer Overflow or Wraparound vulnerability in Xpdfreader Xpdf In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow and divide-by-zero. | 6.2 |
| 2024-05-15 | CVE-2024-4976 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference. | 5.5 |
| 2024-05-06 | CVE-2024-4568 | Uncontrolled Recursion vulnerability in Xpdfreader Xpdf In Xpdf 4.05 (and earlier), a PDF object loop in the PDF resources leads to infinite recursion and a stack overflow. | 5.5 |
| 2024-04-24 | CVE-2024-4141 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid character code in a Type 1 font. | 5.5 |
| 2024-04-17 | CVE-2024-3900 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by long Unicode sequence in ActualText. | 5.5 |
| 2024-04-02 | CVE-2024-3247 | Uncontrolled Recursion vulnerability in Xpdfreader Xpdf In Xpdf 4.05 (and earlier), a PDF object loop in an object stream leads to infinite recursion and a stack overflow. | 5.5 |
| 2024-04-02 | CVE-2024-3248 | Uncontrolled Recursion vulnerability in Xpdfreader Xpdf In Xpdf 4.05 (and earlier), a PDF object loop in the attachments leads to infinite recursion and a stack overflow. | 5.5 |
| 2024-03-26 | CVE-2024-2971 | Out-of-bounds Write vulnerability in Xpdfreader Xpdf Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by negative object number in indirect reference in the input PDF file. | 5.5 |
| 2023-08-22 | CVE-2022-48545 | Uncontrolled Recursion vulnerability in Xpdfreader Xpdf 4.02 An infinite recursion in Catalog::findDestInTree can cause denial of service for xpdf 4.02. | 5.5 |