CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2021/06/12 12:0 a.m.•3 views

OSV-2021-852 Heap-buffer-overflow in parseInternal

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35153 Crash type: Heap-buffer-overflow READ 1 Crash state: parseInternal JavaExampleFuzzerNativeparse...

7.2AI score

Exploits0References1

RedhatCVE•added 2017/07/26 8:18 p.m.•27 views

CVE-2017-11624

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after two consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite...

5.5CVSS5AI score0.00085EPSS

Exploits1References1

OSV•added 2017/07/25 11:29 p.m.•0 views

ALPINE-CVE-2017-11626

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite...

5.5CVSS6.5AI score0.00323EPSS

Exploits1References1

OSV•added 2017/07/25 12:0 a.m.•0 views

UBUNTU-CVE-2017-11626

A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite...

5.5CVSS6.3AI score0.00323EPSS

Exploits1References4

RedhatCVE•added 2017/05/23 2:19 p.m.•18 views

CVE-2017-9209

libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service infinite recursion and stack consumption via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka qpdf-infiniteloop2...

5.5CVSS6.1AI score0.00283EPSS

Exploits0References1