Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2026/04/16 9:30 p.m.1 views

Memory Allocation with Excessive Size Value

Overview PyPDF2 is an A pure-python PDF library capable of splitting, merging, cropping, and transforming PDF files Affected versions of this package are vulnerable to Memory Allocation with Excessive Size Value via the FlateDecode method when handling streams with a /Predictor value not equal to...

6.5CVSS5.7AI score0.00025EPSS
Exploits0References2
OSV
OSVadded 2026/03/06 7:16 a.m.3 views

UBUNTU-CVE-2026-28804

pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires accessing a stream which uses the /ASCIIHexDecode filter. This issue has been patched in version 6.7.5...

6.9CVSS5.7AI score0.00017EPSS
Exploits0References6
Positive Technologies
Positive Technologiesadded 2025/08/04 12:0 a.m.4 views

PT-2025-31829

Name of the Vulnerable Software and Affected Versions poppler version 25.04.0 Description The heap memory containing PDF stream objects is not cleared upon program exit, potentially allowing attackers to obtain sensitive PDF content via a memory dump. Recommendations At the moment, there is no...

6.5CVSS6.3AI score0.00102EPSS
Exploits1References39
OSV
OSVadded 2022/11/01 12:0 p.m.2 views

GHSA-FRP9-2V6R-GJ97 muhammara and hummus vulnerable to null pointer dereference on bad response object

The package muhammara before 2.6.0 and the package hummus before 1.0.111 are vulnerable to Denial of Service DoS when PDFStreamForResponse is used with invalid data...

7.5CVSS5.9AI score0.00942EPSS
Exploits1References8
CNNVD
CNNVDadded 2022/11/01 12:0 a.m.1 views

MuhammaraJS 安全漏洞

MuhammaraJS is a node module with c/cpp bindings from the individual developer Julian Hille. A security vulnerability exists in MuhammaraJS versions prior to 2.6.0, which stems from a possible denial of service when its PDFStreamForResponse function is passed invalid data by an attacker...

7.5CVSS7.2AI score0.00942EPSS
Exploits1References6
Snyk
Snykadded 2022/10/31 12:11 p.m.2 views

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS when PDFStreamForResponse is used with invalid data. PoC js hummus = require'muhammara' writer = new hummus.PDFStreamForResponsenull writer = hummus.createWriterwriter writer.end Details Denial of Service DoS...

7.5CVSS7AI score0.00942EPSS
Exploits1References2
Prion
Prionadded 2019/10/30 9:15 p.m.8 views

Null pointer dereference

xpdf allows remote attackers to cause a denial of service NULL pointer dereference and crash in the way it processes JBIG2 PDF stream objects...

4.3CVSS7.1AI score0.00443EPSS
Exploits0References2Affected Software1
Prion
Prionadded 2016/04/22 3:59 p.m.21 views

Design/Logic Flaw

Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted FlateDecode stream in a PDF document...

6.8CVSS8AI score0.01302EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder