Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2025/10/16 10:15 p.m.2 views

CVE-2025-11896

In Xpdf 4.05 and earlier, a PDF object loop in a CMap, via the "UseCMap" entry, leads to infinite recursion and a stack overflow...

2.1CVSS0.00009EPSS
Exploits0References1
Github Security Blog
Github Security Blogadded 2025/08/20 9:30 p.m.11 views

Apache Tika XXE Vulnerability via Crafted XFA File Inside a PDF

Critical XXE in Apache Tika tika-parser-pdf-module in Apache Tika 1.13 through and including 3.2.1 on all platforms allows an attacker to carry out XML External Entity injection via a crafted XFA file inside of a PDF. An attacker may be able to read sensitive data or trigger malicious requests to...

9.8CVSS7.1AI score0.00021EPSS
Exploits4References11Affected Software2
SUSE CVE
SUSE CVEadded 2023/02/15 4:24 a.m.2 views

SUSE CVE-2018-16369

XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...

5.5CVSS6.7AI score0.00462EPSS
Exploits1References6
CNVD
CNVDadded 2019/05/15 12:0 a.m.1 views

Adobe Acrobat/Reader Arbitrary Code Execution Vulnerability (CNVD-2019-21655)

Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe.Adobe Acrobat is a PDF editing software developed by Adobe. Adobe Acrobat/Reader arbitrary code execution vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

10CVSS8.1AI score0.05456EPSS
Exploits0References1
CNVD
CNVDadded 2016/10/10 12:0 a.m.1 views

Adobe Reader and Acrobat Remote Code Execution Vulnerability (CNVD-2016-08999)

Adobe Reader and Acrobat are PDF file-related software: Adobe Reader is a free PDF file reader, Acrobat is a PDF file editing and conversion tools. A security vulnerability exists in Adobe Reader and Acrobat, which can be exploited by an attacker to execute arbitrary code in the context of the...

10CVSS7.6AI score0.03024EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2009/10/15 8:28 a.m.3 views

xpdf/poppler: ImageStream:: ImageStream integer overflow

Integer overflow in the ImageStream::ImageStream function in Stream.cc in Xpdf before 3.02pl4 and Poppler before 0.12.1, as used in GPdf, kdegraphics KPDF, and CUPS pdftops, allows remote attackers to cause a denial of service application crash via a crafted PDF document that triggers a NULL...

4.3CVSS6AI score0.05999EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2009/04/16 10:11 p.m.1 views

PDF JBIG2 NULL dereference

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a NULL pointer dereference...

4.3CVSS5.8AI score0.02433EPSS
Exploits1References4
Rows per page
Query Builder