Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1345 matches found

Veracode
Veracodeadded 2018/05/24 7:1 a.m.19 views

Denial Of Service (DoS)

MuPDF is vulnerable to denial of serviceDoS. It causes multiple heap-use-after-free reads after free bugs if the attacker inputs a malicious file. It can also lead to arbitrary code execution...

6.3CVSS7.7AI score0.01848EPSS
Exploits1References13Affected Software1
Positive Technologies
Positive Technologiesadded 2018/05/24 12:0 a.m.2 views

PT-2018-9227 · Artifex +1 · Mupdf +1

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: The issue is related to multiple heap use after free bugs in the PDF parser, which could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a craft...

9.8CVSS7.2AI score0.15181EPSS
Exploits8References58
Positive Technologies
Positive Technologiesadded 2018/05/24 12:0 a.m.2 views

PT-2018-9226 · Artifex +1 · Mupdf +1

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: A stack buffer overflow in the pdf lookup cmap full function in pdf/pdf-cmap.c could allow an attacker to execute arbitrary code via a crafted file. This issue affects the MuPDF library,...

9.8CVSS7.3AI score0.15181EPSS
Exploits8References50
Positive Technologies
Positive Technologiesadded 2018/05/24 12:0 a.m.2 views

PT-2018-9225 · Artifex +1 · Mupdf +1

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: The issue allows an attacker to cause a denial of service via a crafted file, exploiting multiple reachable assertions in the PDF parser. Recommendations: For Artifex MuPDF versions 1.12....

9.8CVSS5.7AI score0.15181EPSS
Exploits11References66
Positive Technologies
Positive Technologiesadded 2018/05/24 12:0 a.m.4 views

PT-2018-9228 · Artifex +1 · Mupdf +1

Name of the Vulnerable Software and Affected Versions: Artifex MuPDF versions 1.12.0 and earlier Description: The issue is related to multiple use of uninitialized value bugs in the PDF parser, which could allow an attacker to cause a denial of service crash or influence program flow via a crafte...

9.8CVSS5.8AI score0.15181EPSS
Exploits11References61
Positive Technologies
Positive Technologiesadded 2018/05/24 12:0 a.m.2 views

PT-2018-9224 · Artifex +1 · Mupdf +1

Name of the Vulnerable Software and Affected Versions: MuPDF versions 1.12.0 and earlier Description: The issue is related to multiple memory leaks in the PDF parser, which can be exploited by an attacker to cause a denial of service memory leak via a crafted file. Recommendations: For MuPDF...

9.8CVSS6.2AI score0.15181EPSS
Exploits14References63
Veracode
Veracodeadded 2018/05/17 7:49 a.m.16 views

Integer Overflow

MuPDF is vulnerable to integer overflow. The attack can happen because of the incorrect exponent validation in the jsstrtod function in jsdtoa.c...

5.5CVSS5.5AI score0.05295EPSS
Exploits5References6Affected Software1
ArchLinux
ArchLinuxadded 2018/05/16 12:0 a.m.27 views

[ASA-201805-12] zathura-pdf-mupdf: multiple issues

Arch Linux Security Advisory ASA-201805-12 ========================================== Severity: High Date : 2018-05-16 CVE-ID : CVE-2018-5686 CVE-2018-6187 CVE-2018-6192 CVE-2018-6544 CVE-2018-1000051 Package : zathura-pdf-mupdf Type : multiple issues Remote : Yes Link :...

7.8CVSS3AI score0.01942EPSS
Exploits5References21
ossfuzz
ossfuzzadded 2018/05/15 6:24 p.m.15 views

mupdf/pdf_fuzzer: Use-of-uninitialized-value in fz_unpack_tile

Project: git://git.ghostscript.com/mupdf.git Detailed report: https://oss-fuzz.com/testcase?key=5631625898491904 Project: mupdf Fuzzer: libFuzzermupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanmupdf Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

6.4AI score
Exploits0Affected Software1
ossfuzz
ossfuzzadded 2018/05/15 12:25 p.m.14 views

mupdf/pdf_fuzzer: Use-of-uninitialized-value in cf2_glyphpath_lineTo

Project: git://git.ghostscript.com/mupdf.git Detailed report: https://oss-fuzz.com/testcase?key=5724012322750464 Project: mupdf Fuzzer: libFuzzermupdfpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanmupdf Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash...

6.4AI score
Exploits0Affected Software1
ArchLinux
ArchLinuxadded 2018/05/10 12:0 a.m.35 views

[ASA-201805-7] mupdf-tools: multiple issues

Arch Linux Security Advisory ASA-201805-7 ========================================= Severity: High Date : 2018-05-10 CVE-ID : CVE-2018-5686 CVE-2018-6187 CVE-2018-6192 CVE-2018-6544 CVE-2018-1000051 Package : mupdf-tools Type : multiple issues Remote : Yes Link :...

7.8CVSS3.1AI score0.01942EPSS
Exploits5References21
ArchLinux
ArchLinuxadded 2018/05/10 12:0 a.m.38 views

[ASA-201805-5] mupdf-gl: multiple issues

Arch Linux Security Advisory ASA-201805-5 ========================================= Severity: High Date : 2018-05-10 CVE-ID : CVE-2018-5686 CVE-2018-6187 CVE-2018-6192 CVE-2018-6544 CVE-2018-1000051 Package : mupdf-gl Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-6...

7.8CVSS3.1AI score0.01942EPSS
Exploits5References21
ArchLinux
ArchLinuxadded 2018/05/09 12:0 a.m.37 views

[ASA-201805-4] mupdf: multiple issues

Arch Linux Security Advisory ASA-201805-4 ========================================= Severity: High Date : 2018-05-09 CVE-ID : CVE-2018-5686 CVE-2018-6187 CVE-2018-6192 CVE-2018-6544 CVE-2018-1000051 Package : mupdf Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-609...

7.8CVSS3.1AI score0.01942EPSS
Exploits5References21
UbuntuCve
UbuntuCveadded 2018/04/24 7:29 p.m.30 views

CVE-2016-8729

An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to...

7.8CVSS7.1AI score0.01677EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2018/04/24 7:29 p.m.32 views

CVE-2016-8728

An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs ...

8.6CVSS7.2AI score0.01936EPSS
Exploits1References2
NVD
NVDadded 2018/04/24 7:29 p.m.22 views

CVE-2016-8729

An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to...

7.8CVSS7.7AI score0.01677EPSS
Exploits1References4
OSV
OSVadded 2018/04/24 7:29 p.m.22 views

CVE-2016-8729

An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to...

7.8CVSS8.1AI score
Exploits0References4
OSV
OSVadded 2018/04/24 7:29 p.m.24 views

CVE-2016-8728

An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs ...

7.8CVSS8.2AI score
Exploits0References3
Prion
Prionadded 2018/04/24 7:29 p.m.27 views

Heap overflow

An exploitable heap out of bounds write vulnerability exists in the Fitz graphical library part of the MuPDF renderer. A specially crafted PDF file can cause a out of bounds write resulting in heap metadata and sensitive process memory corruption leading to potential code execution. Victim needs ...

6.8CVSS7.5AI score0.01936EPSS
Exploits1References1Affected Software1
OSV
OSVadded 2018/04/24 7:29 p.m.0 views

DEBIAN-CVE-2016-8729

An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the victim to...

7.8CVSS7.8AI score0.01677EPSS
Exploits1References1
Rows per page
Query Builder