Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

19 matches found

Tenable Nessus
Tenable Nessusadded 2025/08/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2019-17064

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor. CVE-2019-17064 Note that...

5.5CVSS6.1AI score0.00368EPSS
Exploits1References2
Veracode
Veracodeadded 2024/04/10 5:8 p.m.20 views

Stack Overflow

XPDF is vulnerable to a stack overflow. The vulnerability is due to a stack overflow via the function Catalog::countPageTree in Catalog.cc...

5.5CVSS5.6AI score0.00206EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2022/09/15 9:15 p.m.1 views

CVE-2022-38334

XPDF v4.04 and earlier was discovered to contain a stack overflow via the function Catalog::countPageTree at Catalog.cc...

5.5CVSS5.8AI score
Exploits0References2
UbuntuCve
UbuntuCveadded 2022/09/15 9:15 p.m.33 views

CVE-2022-38334

XPDF v4.04 and earlier was discovered to contain a stack overflow via the function Catalog::countPageTree at Catalog.cc...

5.5CVSS6.8AI score0.00206EPSS
Exploits1References2
CVE
CVEadded 2022/09/15 12:0 a.m.59 views

CVE-2022-38334

XPDF is affected by CVE-2022-38334: in XPDF v4.04 and earlier, a stack overflow can be triggered by Catalog::countPageTree() in Catalog.cc. Public advisories confirm multiple vendors advise upgrading to a fixed release (e.g., Gentoo GLSA-202409-25 recommends upgrading to XPDF >= 4.05; Mageia M...

5.5CVSS5.8AI score0.00206EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVEadded 2022/09/15 12:0 a.m.31 views

CVE-2022-38334

XPDF v4.04 and earlier was discovered to contain a stack overflow via the function Catalog::countPageTree at Catalog.cc...

5.5CVSS4AI score0.00206EPSS
Exploits1
OSV
OSVadded 2020/09/03 11:15 p.m.0 views

CVE-2020-24996

There is an invalid memory access in the function TextString::TextString located in Catalog.cc in Xpdf 4.0.2. It can be triggered by for example sending a crafted pdf file to the pdftohtml binary, which allows a remote attacker to cause a Denial of Service Segmentation fault or possibly have...

7.8CVSS7.2AI score
Exploits0References1
NVD
NVDadded 2020/09/03 11:15 p.m.13 views

CVE-2020-24996

There is an invalid memory access in the function TextString::TextString located in Catalog.cc in Xpdf 4.0.2. It can be triggered by for example sending a crafted pdf file to the pdftohtml binary, which allows a remote attacker to cause a Denial of Service Segmentation fault or possibly have...

7.8CVSS8.1AI score0.00239EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2020/09/03 11:15 p.m.26 views

CVE-2020-24996

There is an invalid memory access in the function TextString::TextString located in Catalog.cc in Xpdf 4.0.2. It can be triggered by for example sending a crafted pdf file to the pdftohtml binary, which allows a remote attacker to cause a Denial of Service Segmentation fault or possibly have...

7.8CVSS7AI score0.00239EPSS
Exploits1References2
Prion
Prionadded 2020/09/03 11:15 p.m.16 views

Design/Logic Flaw

There is an invalid memory access in the function TextString::TextString located in Catalog.cc in Xpdf 4.0.2. It can be triggered by for example sending a crafted pdf file to the pdftohtml binary, which allows a remote attacker to cause a Denial of Service Segmentation fault or possibly have...

6.8CVSS8AI score0.00239EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2020/09/03 10:17 p.m.19 views

CVE-2020-24996

There is an invalid memory access in the function TextString::TextString located in Catalog.cc in Xpdf 4.0.2. It can be triggered by for example sending a crafted pdf file to the pdftohtml binary, which allows a remote attacker to cause a Denial of Service Segmentation fault or possibly have...

8.1AI score0.00239EPSS
Exploits1References1
CVE
CVEadded 2020/09/03 10:17 p.m.46 views

CVE-2020-24996

CVE-2020-24996 affects Xpdf 4.0.2, with an invalid memory access in TextString::~TextString() in Catalog.cc. A crafted PDF sent to the pdftohtml binary can trigger a Denial of Service (segmentation fault) and potentially other impacts. Exploitation details, affected versions beyond 4.0.2, and rem...

7.8CVSS8AI score0.00239EPSS
Exploits1References1Affected Software1
Mageia
Mageiaadded 2019/12/31 4:51 p.m.25 views

Updated xpdf packages fix security vulnerability

The updated packages fix a security vulnerability: Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor. CVE-2019-17064...

5.5CVSS2.9AI score0.00368EPSS
Exploits1References2
OSV
OSVadded 2019/12/31 4:51 p.m.4 views

MGASA-2019-0422 Updated xpdf packages fix security vulnerability

The updated packages fix a security vulnerability: Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor. CVE-2019-17064...

5.5CVSS6.7AI score0.00368EPSS
Exploits1References3
UbuntuCve
UbuntuCveadded 2019/10/01 4:15 p.m.18 views

CVE-2019-17064

Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor...

5.5CVSS6.1AI score0.00368EPSS
Exploits1References3
Prion
Prionadded 2019/10/01 4:15 p.m.14 views

Null pointer dereference

Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor...

4.3CVSS5.4AI score0.00368EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2019/10/01 3:22 p.m.91 views

CVE-2019-17064

The CVE-2019-17064 issue is a NULL pointer dereference in Catalog.cc of Xpdf 4.02 caused by late initialization of Catalog.pageLabels. Updates have been released (e.g., Fedora 2019-b890d4aad2; Mageia MGASA-2019-0422) to apply the upstream fix. Affected products are Xpdf 4.02; no exploitation deta...

5.5CVSS5.2AI score0.00368EPSS
Exploits1References4Affected Software1
Debian CVE
Debian CVEadded 2019/10/01 3:22 p.m.16 views

CVE-2019-17064

Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor...

5.5CVSS3.3AI score0.00368EPSS
Exploits1
Cvelist
Cvelistadded 2019/10/01 3:22 p.m.16 views

CVE-2019-17064

Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because Catalog.pageLabels is initialized too late in the Catalog constructor...

5.3AI score0.00368EPSS
Exploits1References4
Rows per page
Query Builder