Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

387 matches found

OSV
OSVadded 2024/06/24 5:20 a.m.15 views

SUSE-SU-2024:2173-1 Security update for qpdf

This update for qpdf fixes the following issues: - CVE-2018-9918: Fixed mishandled 'expected dictionary key but found non-name object' cases that could have allowed attackers to cause a denial of service. bsc1089090...

7.8CVSS7.2AI score0.01717EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2024/06/24 12:0 a.m.26 views

SUSE SLES12 Security Update : qpdf (SUSE-SU-2024:2173-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2173-1 advisory. - CVE-2018-9918: Fixed mishandled 'expected dictionary key but found non-name object' cases that could have allowed attackers to cause a...

7.8CVSS7.3AI score0.01717EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.24 views

RHEL 8 : qpdf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - qpdf: Heap use after free in PlASCII85Decoder::write CVE-2021-25786 - qpdf: heap-based buffer overflow in...

5.5CVSS5.1AI score0.01281EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.34 views

RHEL 9 : qpdf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - qpdf: Heap use after free in PlASCII85Decoder::write CVE-2021-25786 Note that Nessus has not tested for this issue...

5.3CVSS7.1AI score0.00503EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2024/06/03 12:0 a.m.18 views

RHEL 7 : qpdf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - qpdf: stack exhaustion in QPDFObjectHandle and QPDFDictionary classes in libqpdf.a CVE-2018-9918 - An iss...

7.8CVSS6.2AI score0.01804EPSS
Exploits5References14
Tenable Nessus
Tenable Nessusadded 2024/05/11 12:0 a.m.29 views

RHEL 8 : qpdf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - qpdf: recursive calls can lead to a DoS in libqpdf/QPDFWriter.cc CVE-2018-18020 Note that Nessus has not tested for...

3.7AI score0.01281EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2024/05/11 12:0 a.m.40 views

RHEL 7 : qpdf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - qpdf: stack exhaustion in QPDFObjectHandle and QPDFDictionary classes in libqpdf.a CVE-2018-9918 - A...

7.8AI score0.01804EPSS
Exploits7References16
Tenable Nessus
Tenable Nessusadded 2024/04/29 12:0 a.m.16 views

Fedora 40 : qpdf (2024-7d55be81bd)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-7d55be81bd advisory. 2267205 - TRIAGE CVE-2024-24246 qpdf - Heap Buffer Overflow vulnerability in qpdf fedora-all 2265854 - qpdf-11.9.0 is available Tenable has extracte...

5.5CVSS6.4AI score0.00436EPSS
Exploits1References2
OpenVAS
OpenVASadded 2024/04/05 12:0 a.m.18 views

Mageia: Security Advisory (MGASA-2024-0076)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.00436EPSS
Exploits1References4
OpenVAS
OpenVASadded 2024/03/26 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-6713-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.00436EPSS
Exploits1References2
Ubuntu
Ubuntuadded 2024/03/25 12:1 p.m.39 views

USN-6713-1: QPDF vulnerability

It was discovered that QPDF incorrectly handled certain memory operations when decoding JSON files. If a user or automated system were tricked into processing a specially crafted JSON file, QPDF could be made to crash, resulting in a denial of service, or possibly execute arbitrary code...

5.5CVSS6.8AI score0.00436EPSS
Exploits1
OSV
OSVadded 2024/03/25 12:1 p.m.6 views

USN-6713-1 qpdf vulnerability

It was discovered that QPDF incorrectly handled certain memory operations when decoding JSON files. If a user or automated system were tricked into processing a specially crafted JSON file, QPDF could be made to crash, resulting in a denial of service, or possibly execute arbitrary code...

5.5CVSS6AI score0.00436EPSS
Exploits1References2
OpenVAS
OpenVASadded 2024/03/25 12:0 a.m.22 views

Fedora: Security Advisory (FEDORA-2024-7d55be81bd)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00436EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2024/03/25 12:0 a.m.40 views

Ubuntu 23.10 : QPDF vulnerability (USN-6713-1)

The remote Ubuntu 23.10 host has packages installed that are affected by a vulnerability as referenced in the USN-6713-1 advisory. It was discovered that QPDF incorrectly handled certain memory operations when decoding JSON files. If a user or automated system were tricked into processing a...

5.5CVSS6.8AI score0.00436EPSS
Exploits1References2
Fedora
Fedoraadded 2024/03/23 12:45 a.m.33 views

[SECURITY] Fedora 40 Update: qpdf-11.9.0-1.fc40

QPDF is a command-line program that does structural, content-preserving transformations on PDF files. It could have been called something like pdf-to-pdf. It includes support for merging and splitting PDFs and to manipulate the list of pages in a PDF file. It is not a PDF viewer or a program...

5.5CVSS7AI score0.00436EPSS
Exploits1
Mageia
Mageiaadded 2024/03/20 3:35 a.m.42 views

Updated qpdf packages fix security vulnerability

Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::sharedcount function at /bits/sharedptrbase.h. CVE-2024-24246...

5.5CVSS6.9AI score0.00436EPSS
Exploits1References2
OSV
OSVadded 2024/03/20 3:35 a.m.2 views

MGASA-2024-0076 Updated qpdf packages fix security vulnerability

Heap Buffer Overflow vulnerability in qpdf 11.9.0 allows attackers to crash the application via the std::sharedcount function at /bits/sharedptrbase.h. CVE-2024-24246...

5.5CVSS6.7AI score0.00436EPSS
Exploits1References3
OpenVAS
OpenVASadded 2024/03/11 12:0 a.m.16 views

Fedora: Security Advisory for qpdf (FEDORA-2024-daa7df59d6)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.00436EPSS
Exploits1References2
OpenVAS
OpenVASadded 2024/03/11 12:0 a.m.16 views

Fedora: Security Advisory (FEDORA-2024-8762164e47)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.00436EPSS
Exploits1References4
Fedora
Fedoraadded 2024/03/10 1:23 a.m.30 views

[SECURITY] Fedora 38 Update: qpdf-11.6.4-2.fc38

QPDF is a command-line program that does structural, content-preserving transformations on PDF files. It could have been called something like pdf-to-pdf. It includes support for merging and splitting PDFs and to manipulate the list of pages in a PDF file. It is not a PDF viewer or a program...

5.5CVSS7.3AI score0.00436EPSS
Exploits1
Rows per page
Query Builder