Lucene search
K

492 matches found

OSV
OSV
added 2025/11/07 12:30 p.m.4 views

OESA-2025-2620 poppler security update

Poppler is a free software utility library for rendering Portable Document Format PDF documents. \ Its development is supported by freedesktop.org. It is commonly used on Linux systems,and is used by \ the PDF viewers of the open source GNOME and KDE desktop environments. Security Fixes: An issue...

5.5CVSS5.6AI score0.00517EPSS
Exploits1References2
SUSE Linux
SUSE Linux
added 2025/10/31 2:55 p.m.6 views

Security update for poppler

This update for poppler fixes the following issues: CVE-2025-43718: fixed uncontrolled recursion in the regex-based metadata parser when processing specially crafted PDF files bsc1250908 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST...

6.8CVSS6.7AI score0.00124EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/31 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: poppler (UTSA-2025-988617)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988617 advisory. An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead t...

6.5CVSS5.5AI score0.00301EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-62707

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft a PDF which leads to an...

8.7CVSS5.7AI score0.00402EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2025/10/18 6:51 a.m.9 views

Silver Fox Expands Winos 4.0 Attacks to Japan and Malaysia via HoldingHands RAT

The threat actors behind a malware family known as Winos 4.0 aka ValleyRAT have expanded their targeting footprint from China and Taiwan to target Japan and Malaysia with another remote access trojan RAT tracked as HoldingHands RAT aka Gh0stBins. "The campaign relied on phishing emails with PDFs...

8AI score
Exploits0
The Hacker News
The Hacker News
added 2025/10/07 5:4 p.m.3 views

BatShadow Group Uses New Go-Based 'Vampire Bot' Malware to Hunt Job Seekers

A Vietnamese threat actor named BatShadow has been attributed to a new campaign that leverages social engineering tactics to deceive job seekers and digital marketing professionals to deliver a previously undocumented malware called Vampire Bot. "The attackers pose as recruiters, distributing...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-11134

Malware in sbrugna...

7.8CVSS7.5AI score0.02448EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-18162

Malware in sbrugna...

7.5CVSS6.1AI score0.01222EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-8321

Malware in sbrugna...

7.8CVSS7.7AI score0.01745EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-4925

Malware in sbrugna...

7.5CVSS6.4AI score0.0111EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0078

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.01005EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-0065

Malicious code in bioql PyPI...

9.8CVSS9AI score0.01168EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-38016

Malicious code in bioql PyPI...

8.8CVSS7.7AI score0.00898EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-26422

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00234EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-11254

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in PoDoFo 0.9.5. There is an Excessive Recursion in the PdfPagesTree::GetPageNode function of PdfPagesTree.cpp. Remote attackers could...

5.5CVSS6.4AI score0.01093EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-31811

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache PDFBox, a carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.23 and...

5.5CVSS6.8AI score0.03445EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-31812

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache PDFBox, a carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox version 2.0.23 and prior...

5.5CVSS6.7AI score0.03054EPSS
Exploits0References3
OSV
OSV
added 2025/08/15 12:40 p.m.4 views

OESA-2025-2037 poppler security update

is a PDF rendering library. Security Fixes: An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead to a Denial of Service DoS.CVE-2025-50420...

6.5CVSS6.8AI score0.00301EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/08/14 11:22 p.m.3 views

SUSE CVE-2025-55197

pypdf is a free and open-source pure-python PDF library. Prior to version 6.0.0, an attacker can craft a PDF which leads to the RAM being exhausted. This requires just reading the file if a series of FlateDecode filters is used on a malicious cross-reference stream. Other content streams are...

7.5CVSS7AI score0.00408EPSS
Exploits0References3
Snyk
Snyk
added 2025/08/13 11:45 p.m.4 views

Allocation of Resources Without Limits or Throttling

Overview pypdf is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to the decompressed size for the FlateDecode filter. An attacker can caus...

8.7CVSS7AI score0.00408EPSS
Exploits0References2
Rows per page
Query Builder