CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

35 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-23095

Malware in sbrugna...

7.5CVSS7.4AI score0.00497EPSS

Exploits1References3

Tenable Nessus•added 2025/08/27 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2021-36493

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows attackers to crash the application via crafted command. CVE-2021-36493 Note that Nessus relies on...

7.5CVSS7.1AI score0.00497EPSS

Exploits1References2

Tenable Nessus•added 2025/08/26 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2022-38222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a use-after-free issue in JBIG2Stream::close located in JBIG2Stream.cc in Xpdf 4.04. It can be triggered by sending a crafted PDF file to for example t...

7.8CVSS6.8AI score0.00173EPSS

Exploits1References2

Tenable Nessus•added 2025/08/24 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2019-9587

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a stack consumption issue in md5Round1 located in Decrypt.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to for example the pdfimag...

7.8CVSS7.1AI score0.00337EPSS

Exploits1References2

Tenable Nessus•added 2025/08/19 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2019-9545

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Poppler 0.74.0. A recursive function call, in JBIG2Stream::readTextRegion located in JBIG2Stream.cc, can be triggered by sending a...

8.8CVSS6.8AI score0.00255EPSS

Exploits1References3

Snyk•added 2024/12/22 11:45 p.m.•1 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the JBIG2Bitmap::combine function, which can be exploited to cause a crash. This can be triggered by reading a malicious PDF file with pdfimages. Remediation Upgrade poppler to version 25.11.0 or higher. References...

6.9CVSS6.2AI score0.00305EPSS

Exploits1References2

UbuntuCve•added 2023/05/10 12:0 a.m.•16 views

CVE-2023-31554

xpdf pdfimages v4.04 was discovered to contain a stack overflow in the component Catalog::readPageLabelTree2Object. This vulnerability allows attackers to cause a Denial of Service DoS...

6.9AI score

Exploits0References5

Positive Technologies•added 2023/05/10 12:0 a.m.•1 views

PT-2023-23388 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: xpdf pdfimages version 4.04 Description: A stack overflow was discovered in the Catalog::readEmbeddedFileTreeObject component, allowing attackers to cause a Denial of Service DoS. Recommendations: For xpdf pdfimages version 4.04, at the momen...

5.5CVSS6.3AI score

Exploits0References6

Positive Technologies•added 2023/05/10 12:0 a.m.•1 views

PT-2023-23385 · Xpdf · Xpdf

Name of the Vulnerable Software and Affected Versions: xpdf pdfimages version 4.04 Description: A stack overflow was discovered in the Catalog::readPageLabelTree2Object component, allowing attackers to cause a Denial of Service DoS. Recommendations: For xpdf pdfimages version 4.04, at the moment,...

5.5CVSS6.4AI score

Exploits0References6

UbuntuCve•added 2023/05/10 12:0 a.m.•16 views

CVE-2023-31557

xpdf pdfimages v4.04 was discovered to contain a stack overflow in the component Catalog::readEmbeddedFileTreeObject. This vulnerability allows attackers to cause a Denial of Service DoS...

6.9AI score

Exploits0References5

SUSE CVE•added 2023/02/15 4:14 a.m.•1 views

SUSE CVE-2019-9200

A heap-based buffer underwrite exists in ImageStream::getLine located at Stream.cc in Poppler 0.74.0 that can for example be triggered by sending a crafted PDF file to the pdfimages binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have unspecified other impa...

7.8CVSS9.8AI score0.03439EPSS

Exploits1References5

SUSE CVE•added 2023/02/15 3:39 a.m.•1 views

SUSE CVE-2021-36493

Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows attackers to crash the application via crafted command...

7.5CVSS7AI score0.00497EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:24 a.m.•2 views

SUSE CVE-2022-38222

There is a use-after-free issue in JBIG2Stream::close located in JBIG2Stream.cc in Xpdf 4.04. It can be triggered by sending a crafted PDF file to for example the pdfimages binary. It allows an attacker to cause Denial of Service or possibly have unspecified other impact...

7.8CVSS8.1AI score0.00173EPSS

Exploits1References3