Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

33 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:56 a.m.0 views

CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS7.5AI score0.00054EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2025/08/18 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-38238

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc. CVE-2022-38238 Note that Nessus relies on the...

7.8CVSS7.2AI score0.00054EPSS
Exploits1References2
SUSE CVE
SUSE CVEadded 2023/02/15 6:10 a.m.1 views

SUSE CVE-2007-5393

Heap-based buffer overflow in the CCITTFaxStream::lookChar method in xpdf/Stream.cc in Xpdf 3.02p11 allows remote attackers to execute arbitrary code via a PDF file that contains a crafted CCITTFaxDecode filter...

9.3CVSS8.3AI score0.14245EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2023/02/15 5:40 a.m.2 views

SUSE CVE-2013-1790

poppler/Stream.cc in poppler before 0.22.1 allows context-dependent attackers to have an unspecified impact via vectors that trigger a read of uninitialized memory by the CCITTFaxStream::lookChar function...

6.8CVSS7AI score0.02786EPSS
Exploits1References5
SUSE CVE
SUSE CVEadded 2023/02/15 4:29 a.m.2 views

SUSE CVE-2018-8104

The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and application crash via a specific pdf file, as demonstrated by pdftohtml...

5.5CVSS6.9AI score0.00148EPSS
Exploits0References11
SUSE CVE
SUSE CVEadded 2023/02/15 3:24 a.m.2 views

SUSE CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS7.6AI score0.00054EPSS
Exploits1References3
OSV
OSVadded 2022/08/16 9:15 p.m.2 views

CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS5.8AI score0.00054EPSS
Exploits1References1
NVD
NVDadded 2022/08/16 9:15 p.m.8 views

CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS0.00054EPSS
Exploits1References1
OSV
OSVadded 2022/08/16 9:15 p.m.0 views

UBUNTU-CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS5.8AI score0.00054EPSS
Exploits1References3
CVE
CVEadded 2022/08/16 8:14 p.m.52 views

CVE-2022-38238

XPDF contains a heap-buffer overflow in DCTStream::lookChar() at /xpdf/Stream.cc due to commit ffaf11c, identified as CVE-2022-38238. The vulnerability affects XPDF and yields HIGH impact (confidentiality, integrity, availability) with a LOCAL attack vector and user interaction required (cvss3.1:...

7.8CVSS7.7AI score0.00054EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVEadded 2022/08/16 8:14 p.m.33 views

CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

7.8CVSS4.3AI score0.00054EPSS
Exploits1
Cvelist
Cvelistadded 2022/08/16 8:14 p.m.10 views

CVE-2022-38238

XPDF commit ffaf11c was discovered to contain a heap-buffer overflow via DCTStream::lookChar at /xpdf/Stream.cc...

8AI score0.00054EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2022/08/16 12:0 a.m.4 views

PT-2022-24307 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: XPDF affected versions not specified Description: A heap-buffer overflow was discovered in XPDF via the DCTStream::lookChar function at /xpdf/Stream.cc. This issue is related to commit ffaf11c. Recommendations: At the moment, there is no...

7.8CVSS7.4AI score0.00054EPSS
Exploits1References7
CNNVD
CNNVDadded 2022/08/16 12:0 a.m.1 views

XPDF 缓冲区错误漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF commit id ffaf11c has a security vulnerability that originates from DCTStream::lookChar in /xpdf/Stream.cc contains a heap buffer overflow...

7.8CVSS7.8AI score0.00054EPSS
Exploits1References2
CNVD
CNVDadded 2021/07/22 12:0 a.m.12 views

PDF2JSON CCITTFaxStream::lookChar Denial of Service Vulnerability

PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. A denial of service vulnerability exists in the CCITTFaxStream::lookChar function in PDF2JSON version 0.70. The vulnerability stems from an invalid write of size 2. An...

5.5CVSS4.3AI score0.00138EPSS
Exploits1References1
OSV
OSVadded 2021/07/21 6:15 p.m.8 views

CVE-2020-19475

An issue has been found in function CCITTFaxStream::lookChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid write of size 2...

5.5CVSS6.7AI score
Exploits0References1
ossfuzz
ossfuzzadded 2018/06/08 6:2 p.m.17 views

poppler/pdf_fuzzer: Use-of-uninitialized-value in CCITTFaxStream::lookChar

Detailed report: https://oss-fuzz.com/testcase?key=6301118245109760 Project: poppler Fuzzer: libFuzzerpopplerpdffuzzer Fuzz target binary: pdffuzzer Job Type: libfuzzermsanpoppler Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: CCITTFaxStream::lookChar...

6.8AI score
Exploits0Affected Software1
Prion
Prionadded 2018/03/14 3:29 a.m.11 views

Heap overflow

The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and application crash via a specific pdf file, as demonstrated by pdftohtml...

4.3CVSS5.4AI score0.00148EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2018/03/14 3:29 a.m.2 views

UBUNTU-CVE-2018-8104

The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and application crash via a specific pdf file, as demonstrated by pdftohtml...

5.5CVSS6.5AI score0.00148EPSS
Exploits0References4
OSV
OSVadded 2018/03/14 3:29 a.m.5 views

CVE-2018-8104

The BufStream::lookChar function in Stream.cc in xpdf 4.00 allows attackers to launch denial of service heap-based buffer over-read and application crash via a specific pdf file, as demonstrated by pdftohtml...

5.5CVSS6.8AI score
Exploits0References1
Rows per page
Query Builder