Lucene search
K

310 matches found

BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.6 views

The vulnerability of Poppler’s PDF file rendering library, related to integer overflow, allows attackers to cause service interruptions.

The vulnerability of the Poppler library for displaying PDF files is related to a numerical overflow in the PSStack::roll function. Exploiting this vulnerability could allow an attacker to cause a service failure...

4CVSS6.6AI score0.00216EPSS
Exploits1References13Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/05/28 12:0 a.m.4 views

The vulnerability of the adbe.pkcs7.sha1 component of the Poppler PDF rendering library allows a attacker to execute an attack by replacing it.

The vulnerability of the adbe.pkcs7.sha1 component of the Poppler PDF rendering library is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow an attacker to carry out a substitution attack...

4.3CVSS5.8AI score0.00092EPSS
Exploits0References12Affected Software7
NVD
NVD
added 2025/05/23 2:15 a.m.13 views

CVE-2025-5099

An Out of Bounds Write occurs when the native library attempts PDF rendering, which can be exploited to achieve memory corruption and potentially arbitrary code execution...

9.8CVSS0.00576EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/23 1:5 a.m.15 views

CVE-2025-5099 KL-001-2025-004: Mobile Dynamix PrinterShare Mobile Print Out-of-bounds Write

An Out of Bounds Write occurs when the native library attempts PDF rendering, which can be exploited to achieve memory corruption and potentially arbitrary code execution...

0.00576EPSS
Exploits1References1
CVE
CVE
added 2025/05/23 1:5 a.m.58 views

CVE-2025-5099

CVE-2025-5099 affects Mobile Dynamix PrinterShare Mobile Print (Android). The KoreLogic advisory KL-001-2025-004 states an Out-of-Bounds Write in the native library during PDF rendering (libpdfrender.so) can cause memory corruption and potentially arbitrary code execution. Affected version: up to...

9.8CVSS7.5AI score0.00576EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/05/23 12:0 a.m.4 views

Mobile Dynamix PrinterShare Mobile Print 安全漏洞

Foxit PDF Reader is a software for reading and working with PDF documents. A memory corruption vulnerability exists in Foxit PDF Reader. The vulnerability stems from an out-of-bounds write to the native library when attempting PDF rendering, resulting in memory corruption. An attacker can exploit...

9.8CVSS8AI score0.00576EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/05/23 12:0 a.m.5 views

PT-2025-22572 · Mobile Dynamix · Printershare Mobile Print

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: An Out of Bounds Write occurs when the native library attempts PDF rendering, which can be exploited to achieve memory corruption and potentially arbitrary code execution. Recommendations: A...

9.8CVSS6.9AI score0.00576EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/05/14 12:40 p.m.8 views

Moderate: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

9.8CVSS7AI score0.00806EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2025/05/14 12:0 a.m.7 views

Moderate: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: Ghostscript: NPDL device: Compression buffer overflow CVE-2025-27832 For more details...

9.8CVSS7.9AI score0.00806EPSS
Exploits0References4
OSV
OSV
added 2025/05/07 7:11 p.m.3 views

RLSA-2024:5305 Moderate: poppler security update

Poppler is a Portable Document Format PDF rendering library, used by applications such as Evince. Security Fixes: poppler: pdfinfo: crash in broken documents when using -dests parameter CVE-2024-6239 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

7.5CVSS8AI score0.00785EPSS
Exploits0References2
OSV
OSV
added 2025/05/07 7:11 p.m.6 views

RLSA-2024:2979 Moderate: poppler security update

Poppler is a Portable Document Format PDF rendering library, used by applications such as Evince. Security Fixes: poppler: NULL pointer dereference in FoFiType1C::convertToType1 CVE-2020-36024 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...

5.5CVSS6.8AI score0.00517EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2025/04/29 10:23 p.m.65 views

USN-7471-1: poppler vulnerabilities

It was discovered that poppler did not properly verify adbe.pkcs7.sha1 signatures in PDF documents. An attacker could possibly use this issue to create documents with forged signatures that are treated as legitimately signed...

4.3CVSS5AI score0.00092EPSS
Exploits0
Debian
Debian
added 2025/04/28 9:42 a.m.56 views

[SECURITY] [DLA 4141-1] poppler security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4141-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk April 28, 2025 https://wiki.debian.org/LTS -...

7.1CVSS7.3AI score0.00959EPSS
Exploits9
OSV
OSV
added 2025/03/17 8:16 p.m.14 views

RLSA-2024:9167 Moderate: poppler security update

Poppler is a Portable Document Format PDF rendering library, used by applications such as Evince. Security Fixes: poppler: pdfinfo: crash in broken documents when using -dests parameter CVE-2024-6239 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

7.5CVSS6.5AI score0.00785EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2025/03/17 8:16 p.m.4 views

poppler security update

An update is available for poppler. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Poppler is a Portable Document Format PDF rendering library, used by...

7.5CVSS6.5AI score0.00785EPSS
Exploits0
Snyk
Snyk
added 2025/01/14 7:45 p.m.1 views

Server-side Request Forgery (SSRF)

Overview hillelcoren/invoice-ninja is an Invoices, expenses & time-tracking built with Laravel Affected versions of this package are vulnerable to Server-side Request Forgery SSRF through the PDF rendering functionality. Remediation Upgrade hillelcoren/invoice-ninja to version 5.11.8 or higher...

8.3CVSS7AI score0.00384EPSS
Exploits0References2
OSV
OSV
added 2024/12/27 12:34 p.m.4 views

OESA-2024-2602 poppler security update

is a PDF rendering library. Security Fixes: libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.CVE-2024-56378...

4.3CVSS7AI score0.0062EPSS
Exploits1References2
NVD
NVD
added 2024/11/18 9:15 p.m.16 views

CVE-2024-52506

Graylog is a free and open log management platform. The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionality, as included i...

7.1CVSS0.00624EPSS
Exploits1References3
OSV
OSV
added 2024/11/18 8:27 p.m.5 views

CVE-2024-52506 Graylog can leak other users' reports via concurrent PDF report rendering

Graylog is a free and open log management platform. The reporting functionality in Graylog allows the creation and scheduling of reports which contain dashboard widgets displaying individual log messages or metrics aggregated from fields of multiple log messages. This functionality, as included i...

7.1CVSS6.7AI score0.00624EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2024/11/12 9:15 a.m.17 views

Moderate: Red Hat Security Advisory: poppler security update

An update for poppler is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS7.1AI score0.00785EPSS
Exploits0References3
Rows per page
Query Builder