Lucene search
HistoryNov 15, 2022 - 5:15 p.m.
CVE-2022-43071
stack overflow
xpdf v4.04
catalog function
denial of service
crafted pdf file
cve-2022-43071
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
30.1%
A stack overflow in the Catalog::readPageLabelTree2(Object*) function of XPDF v4.04 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.
Affected configurations
Node
xpdfreaderxpdfMatch4.04
| Vendor | Product | Version | CPE |
|---|---|---|---|
| xpdfreader | xpdf | 4.04 | cpe:2.3:a:xpdfreader:xpdf:4.04:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2022-43071
2022-11-15 17:15:11
cvelist
cvelist
CVE-2022-43071
2022-11-15 00:00:00
alpinelinux
alpinelinux
CVE-2022-43071
2022-11-15 17:15:11
veracode
veracode
Stack Overflow
2024-04-10 21:15:22
prion
prion
Stack overflow
2022-11-15 17:15:00
ubuntucve
ubuntucve
CVE-2022-43071
2022-11-15 00:00:00
debiancve
debiancve
CVE-2022-43071
2022-11-15 17:15:11
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0035)
2024-02-12 00:00:00
mageia
mageia
Updated xpdf packages fix security vulnerabilities
2024-02-10 22:02:27
nessus
nessus
GLSA-202409-25 : Xpdf: Multiple Vulnerabilities
2024-09-25 00:00:00
gentoo
gentoo
Xpdf: Multiple Vulnerabilities
2024-09-25 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
30.1%
Related for NVD:CVE-2022-43071