Lucene search
+L

1634 matches found

OSV
OSV
added 2019/02/26 11:29 p.m.1 views

DEBIAN-CVE-2019-9200

A heap-based buffer underwrite exists in ImageStream::getLine located at Stream.cc in Poppler 0.74.0 that can for example be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impa...

8.8CVSS7.5AI score0.03473EPSS
Exploits1References1
CNVD
CNVD
added 2019/01/30 12:0 a.m.2 views

Foxit 3D Plugin Beta Buffer Overflow Vulnerability

Foxit Reader is a Chinese Foxit Foxit software company of a PDF document reader.Foxit PhantomPDF is a commercial version.Foxit 3D Plugin Beta is one of the 3D plugin. A buffer overflow vulnerability exists in versions prior to Foxit 3D Plugin Beta 9.4.0.16807 for Foxit Reader and PhantomPDF. An...

5.5CVSS7AI score0.02512EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/30 12:0 a.m.4 views

Foxit 3D Plugin Beta Integer Overflow Vulnerability

Foxit Reader is a Chinese Foxit Foxit software company of a PDF document reader.Foxit PhantomPDF is a commercial version.Foxit 3D Plugin Beta is one of the 3D plugin. An integer overflow vulnerability exists in versions prior to Foxit 3D Plugin Beta 9.4.0.16807 for Foxit Reader and PhantomPDF. An...

6.5CVSS6.8AI score0.01117EPSS
Exploits0References1
OSV
OSV
added 2019/01/28 9:29 a.m.3 views

CVE-2019-6982

An issue was discovered in Foxit 3D Plugin Beta before 9.4.0.16807 for Foxit Reader and PhantomPDF. The application could encounter an Out-of-Bounds Write and crash during the handling of certain PDF files that embed specifically crafted 3D content, because of the improper handling of a logic...

5.5CVSS6.1AI score0.02512EPSS
Exploits0References1
OSV
OSV
added 2019/01/28 9:29 a.m.4 views

CVE-2019-6983

An issue was discovered in Foxit 3D Plugin Beta before 9.4.0.16807 for Foxit Reader and PhantomPDF. The application could encounter an Integer Overflow and crash during the handling of certain PDF files that embed specifically crafted 3D content, because of a free of valid memory...

6.5CVSS6.6AI score0.01117EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/11 12:0 a.m.5 views

Google Chrome PDFium Out-of-Bounds Memory Access Vulnerability

Google Chrome is the United States Google Google company developed a Web browser. PDFium is one of the open source PDF rendering engine. Google Chrome 51.0.2704.63 previous version of PDFium security vulnerabilities, the vulnerability stems from the program failed to adequately verify the image...

8.8CVSS8.9AI score0.00794EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/04 12:0 a.m.6 views

Foxit Reader and PhantomPDF for Windows Validation Bypass Vulnerability

Foxit Reader for Windows is China's Foxit Foxit software company's a Windows-based platform for PDF document reader. PhantomPDF for Windows is its commercial version. A validation bypass vulnerability exists in Foxit Reader 9.3.0.10826 and earlier versions and PhantomPDF 9.3.0.10826 and earlier...

5.3CVSS6.8AI score0.01133EPSS
Exploits0References1
OSV
OSV
added 2019/01/03 1:29 p.m.1 views

DEBIAN-CVE-2018-20662

In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing...

6.5CVSS7.2AI score0.02243EPSS
Exploits0References1
OSV
OSV
added 2019/01/02 6:29 p.m.3 views

DEBIAN-CVE-2018-19478

In Artifex Ghostscript before 9.26, a carefully crafted PDF file can trigger an extremely long running computation when parsing the file...

5.5CVSS6.9AI score0.01888EPSS
Exploits0References1
OSV
OSV
added 2019/01/02 6:29 p.m.9 views

UBUNTU-CVE-2018-19478

In Artifex Ghostscript before 9.26, a carefully crafted PDF file can trigger an extremely long running computation when parsing the file...

5.5CVSS6.8AI score0.01888EPSS
Exploits0References2
CNVD
CNVD
added 2018/12/29 12:0 a.m.23 views

Artifex Software Ghostscript Denial of Service Vulnerability (CNVD-2018-26917)

Artifex Software Ghostscript is an open source Postscript a page description language and programming language used in the electronics industry and desktop publishing parser from Artifex Software that displays Postscript files and prints them on non-Postscript printers. print Postscript files on...

5.5CVSS6.7AI score0.01888EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2018/12/13 12:0 a.m.7 views

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, and Adobe Acrobat Document Cloud, related to the manipulation of the null pointer, allows attackers to execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud are related to the handling of the null pointer. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary code using a...

9.3CVSS7.7AI score0.27821EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2018/12/13 12:0 a.m.7 views

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud involve memory management issues after the memory is freed. These vulnerabilities allow attackers to exploit these weaknesses and execute arbitrary code.

The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow attackers to enhance their privileges and execu...

9.3CVSS7.7AI score0.04181EPSS
Exploits0References4
CNVD
CNVD
added 2018/12/12 12:0 a.m.3 views

Adobe Acrobat and Reader Out-of-Bounds Read Vulnerability (CNVD-2019-12289)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. Adobe Acrobat and Reader have an out-of-bounds read vulnerability. An attacker can exploit this vulnerability to obtain information...

6.5CVSS6.6AI score0.03774EPSS
Exploits0References1
OSV
OSV
added 2018/12/11 4:29 p.m.4 views

DEBIAN-CVE-2018-17481

Incorrect object lifecycle handling in PDFium in Google Chrome prior to 71.0.3578.98 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file...

8.8CVSS8.8AI score0.01606EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/11 12:0 a.m.6 views

Memory Misreference Vulnerability in Adobe Acrobat and Reader

Adobe Acrobat and Reader are the United States of America Audobee Adobe company's products. The former is a set of PDF file editing and conversion tools, the latter is a set of PDF document reading software. Adobe Acrobat and Reader have a memory misreference vulnerability that can be exploited b...

9.3CVSS7.8AI score0.03599EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/11/15 12:0 a.m.22 views

Adobe Reader 2017 Information Disclosure Vulnerability (APSB18-40) - Windows

Adobe Reader 2017 is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.2AI score0.10267EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/11/15 12:0 a.m.13 views

Adobe Acrobat DC 2015 Information Disclosure Vulnerability (APSB18-40) - Mac OS X

Adobe Acrobat DC 2015 is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS7.2AI score0.10267EPSS
Exploits0References1
CNVD
CNVD
added 2018/11/09 12:0 a.m.2 views

Denial of Service Vulnerability in Kingsoft PDF Reader (CNVD-2018-26096)

Kingsoft PDF Reader is a compact and stable PDF reading tool. Kingsoft PDF Reader has a denial of service vulnerability that can be exploited by attackers to cause a denial of service by constructing a specific pdf file...

6.7AI score
Exploits0
CNVD
CNVD
added 2018/11/09 12:0 a.m.2 views

Denial of Service Vulnerability in Kingsoft PDF Reader (CNVD-2018-26097)

Kingsoft PDF Reader is a compact and stable PDF reading tool. Kingsoft PDF Reader has a denial of service vulnerability that can be exploited by attackers to cause a denial of service by constructing a specific pdf file...

6.7AI score
Exploits0
Rows per page
Query Builder