CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1344 matches found

OSV•added 2018/12/06 12:29 a.m.•24 views

CVE-2018-19882

In Artifex MuPDF 1.14.0, the svgrunimage function in svg/svg-run.c allows remote attackers to cause a denial of service hrefatt NULL pointer dereference and application crash via a crafted svg file, as demonstrated by mupdf-gl...

5.5CVSS6.6AI score

Exploits0References5

OSV•added 2018/12/06 12:29 a.m.•0 views

UBUNTU-CVE-2018-19882

5.5CVSS6AI score0.01425EPSS

Exploits1References4

OSV•added 2018/12/06 12:29 a.m.•31 views

CVE-2018-19881

In Artifex MuPDF 1.14.0, svg/svg-run.c allows remote attackers to cause a denial of service recursive calls followed by a fitz/xml.c fzxmlatt crash from excessive stack consumption via a crafted svg file, as demonstrated by mupdf-gl...

5.5CVSS6.7AI score

Exploits0References6

OSV•added 2018/12/06 12:29 a.m.•1 views

DEBIAN-CVE-2018-19882

5.5CVSS6.7AI score0.01425EPSS

Exploits1References1

Positive Technologies•added 2018/12/06 12:0 a.m.•2 views

PT-2018-15137 · Artifex · Artifex Mupdf

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.14.0 Description: The issue allows remote attackers to cause a denial of service, resulting in an application crash, via a crafted svg file. This is due to a NULL pointer dereference in the svg run image function...

5.5CVSS5.8AI score0.01425EPSS

Exploits1References11

Cvelist•added 2018/12/06 12:0 a.m.•38 views

CVE-2018-19881

5.3AI score0.01571EPSS

Exploits1References5

Positive Technologies•added 2018/12/06 12:0 a.m.•2 views

PT-2018-15136 · Artifex · Mupdf

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF version 1.14.0 Description: The issue allows remote attackers to cause a denial of service through recursive calls followed by a crash from excessive stack consumption via a crafted svg file. This is demonstrated by mupdf-gl...

5.5CVSS5.7AI score0.01571EPSS

Exploits1References10

CVE•added 2018/12/06 12:0 a.m.•59 views

CVE-2018-19881

CVE-2018-19881 affects Artifex MuPDF 1.14.0. The issue resides in svg/svg-run.c where processing a crafted SVG can trigger recursive calls, leading to a fitz/xml.c fz_xml_att crash from stack overconsumption and causing a denial of service. Demonstrated by mupdf-gl. Fedora advisories indicate a r...

5.5CVSS5.2AI score0.01571EPSS

Exploits1References6Affected Software1

Cvelist•added 2018/12/06 12:0 a.m.•26 views

CVE-2018-19882

5.3AI score0.01425EPSS

Exploits1References5

CNVD•added 2018/12/06 12:0 a.m.•3 views

Artifex MuPDF Denial of Service Vulnerability (CNVD-2019-06786)

Artifex MuPDF is a free, lightweight PDF reader from Artifex Software. A denial of service vulnerability exists in the 'svgrunimage' function of the svg/svg-run.c file in Artifex MuPDF version 1.14.0. A remote attacker can exploit this vulnerability to cause a denial of service hrefatt null point...

5.5CVSS6.8AI score0.01425EPSS

Exploits1References1

CVE•added 2018/12/06 12:0 a.m.•64 views

CVE-2018-19882

CVE-2018-19882 affects MuPDF 1.14.0: the svg_run_image function in svg/svg-run.c allows a crafted SVG file to trigger a denial of service (href_att NULL pointer dereference and application crash), demonstrated by mupdf-gl. The vulnerability arises from the SVG handling path in MuPDF’s rendering c...

5.5CVSS5.2AI score0.01425EPSS

Exploits1References5Affected Software1

Debian CVE•added 2018/12/06 12:0 a.m.•27 views

CVE-2018-19881

5.5CVSS5.3AI score0.01571EPSS

Exploits1

Debian CVE•added 2018/12/06 12:0 a.m.•27 views

CVE-2018-19882

5.5CVSS5.3AI score0.01425EPSS

Exploits1

Veracode•added 2018/12/03 6:56 a.m.•26 views

Denial Of Service (DoS)

MuPDF is vulnerable to denial of service. An infinite loop in the function svgdevendtile in fitz/svg-device.c allows an attacker to cause a denial of service condition...

5.5CVSS5.3AI score0.01129EPSS

Exploits1References5Affected Software1