Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1139 matches found

OSV
OSVadded 2019/07/04 10:15 p.m.1 views

CVE-2019-13288

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

5.5CVSS6.5AI score0.31539EPSS
Exploits1References1
NVD
NVDadded 2019/07/04 10:15 p.m.22 views

CVE-2019-13288

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

5.5CVSS5.8AI score0.31539EPSS
Exploits1References1
Prion
Prionadded 2019/07/04 10:15 p.m.33 views

Design/Logic Flaw

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

4.3CVSS5.7AI score0.31539EPSS
Exploits2References1Affected Software1
UbuntuCve
UbuntuCveadded 2019/07/04 10:15 p.m.68 views

CVE-2019-13288

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

5.5CVSS6.3AI score0.31539EPSS
Exploits1References2
OSV
OSVadded 2019/07/04 10:15 p.m.1 views

UBUNTU-CVE-2019-13288

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

5.5CVSS6.2AI score0.31539EPSS
Exploits1References3
Debian CVE
Debian CVEadded 2019/07/04 9:6 p.m.76 views

CVE-2019-13288

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

5.5CVSS5.3AI score0.31539EPSS
Exploits1
EUVD
EUVDadded 2019/07/04 9:6 p.m.2 views

EUVD-2019-4794

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

6.5CVSS6AI score0.31539EPSS
Exploits2References2
Cvelist
Cvelistadded 2019/07/04 9:6 p.m.31 views

CVE-2019-13288

In Xpdf 4.01.01, the Parser::getObj function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. This is similar to CVE-2018-16646...

5.9AI score0.31539EPSS
Exploits1References1
CVE
CVEadded 2019/07/04 9:6 p.m.164 views

CVE-2019-13288

CVE-2019-13288 affects Xpdf 4.01.01: the Parser::getObj() function in Parser.cc may recurse infinitely when processing a crafted file, enabling a remote DoS. Connected Debian tracker confirms the same description. No explicit remediation or affected versions beyond the cited release are provided ...

5.5CVSS5.7AI score0.31539EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologiesadded 2019/07/04 12:0 a.m.3 views

PT-2019-13240 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: Xpdf version 4.01.01 Description: The issue allows a remote attacker to cause a denial-of-service DoS attack via a crafted file, leveraging infinite recursion in the Parser::getObj function. Recommendations: For Xpdf version 4.01.01, as a...

5.5CVSS5.9AI score0.31539EPSS
Exploits1References7
ATTACKERKB
ATTACKERKBadded 2019/07/01 3:15 p.m.2 views

CVE-2019-13129

On the Motorola router CX2L MWR04L 1.01, there is a stack consumption infinite recursion issue in scopd via TCP port 8010 and UDP port 8080. It is caused by snprintf and inappropriate length handling...

7.8CVSS5.5AI score0.00296EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2019/06/11 12:2 p.m.2 views

haproxy: Infinite recursion via crafted packet allows stack exhaustion and denial of service

An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a long chain of valid pointers resulting in stack exhaustion...

7.5CVSS6.6AI score0.001EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2019/05/31 12:0 a.m.54 views

Amazon Linux 2 : poppler (ALAS-2019-1217)

There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h. A crafted input will lead to a remote denial of service attack. Poppler versions later than 0.41.0 are not affected.CVE-2018-10768 The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler allows...

6.5CVSS6.2AI score0.01853EPSS
Exploits3References4
Amazon
Amazonadded 2019/05/29 12:0 a.m.37 views

Low: poppler

Issue Overview: There is a NULL pointer dereference in the AnnotPath::getCoordsLength function in Annot.h. A crafted input will lead to a remote denial of service attack. Poppler versions later than 0.41.0 are not affected.CVE-2018-10768 The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in...

6.5CVSS6.7AI score0.01853EPSS
Exploits3
Tenable Nessus
Tenable Nessusadded 2019/05/14 12:0 a.m.39 views

EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1520)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Array index error in the tcmvhostmaketpg function in drivers/vhost/scsi.c in the Linux kernel before 4.0 might allow...

9.8CVSS6.7AI score0.01716EPSS
Exploits16References21
Tenable Nessus
Tenable Nessusadded 2019/05/14 12:0 a.m.39 views

EulerOS Virtualization 3.0.1.0 : bind (EulerOS-SA-2019-1433)

According to the versions of the bind packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A denial of service flaw was found in the way BIND constructed a response to a query that met certain criteria. A remote attacker...

8.6CVSS6.5AI score0.92376EPSS
Exploits21References19
RedhatCVE
RedhatCVEadded 2019/04/15 12:19 p.m.39 views

CVE-2019-11026

FontInfoScanner::scanFonts in FontInfo.cc in Poppler 0.75.0 has infinite recursion, leading to a call to the error function in Error.cc...

6.5CVSS2.1AI score0.00514EPSS
Exploits1References3
Veracode
Veracodeadded 2019/04/09 2:56 a.m.23 views

Denial Of Service (DoS)

libpoppler-cpp.so is vulnerable to denial of service. An infinite recursion in the function FontInfoScanner::scanFonts in FontInfo.cc leads to the error function in Error.cc, allowing an attacker to intentionally cause a denial of service condition...

6.5CVSS6AI score0.00514EPSS
Exploits1References10Affected Software1
Positive Technologies
Positive Technologiesadded 2019/04/09 12:0 a.m.4 views

PT-2019-13127

Name of the Vulnerable Software and Affected Versions Das U-Boot versions prior to 2019.07-rc4 Description The issue arises when a crafted self-referential DOS partition table is encountered, leading to infinite recursion. This recursion causes the stack to grow indefinitely, which can result in ...

7.1CVSS6.8AI score0.00052EPSS
Exploits0References74
UbuntuCve
UbuntuCveadded 2019/04/08 11:29 p.m.25 views

CVE-2019-11026

FontInfoScanner::scanFonts in FontInfo.cc in Poppler 0.75.0 has infinite recursion, leading to a call to the error function in Error.cc...

6.5CVSS6.6AI score0.00514EPSS
Exploits1References2
Rows per page
Query Builder