CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

40 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в poppler

Poppler is a library for rendering PDF files and examining or modifying their structure. A use-after-free vulnerability has been detected in versions of Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector; this can...

8.6CVSS5.7AI score0.00028EPSS

Exploits0References2

CVE•added 2026/04/28 12:0 a.m.•2 views

CVE-2025-60887

CVE-2025-60887 affects Cista v0.15 and earlier. The issue is insecure deserialization of untrusted input under certain conditions, which may leak stack/heap addresses and potentially bypass ASLR. Specifically, classes using pointer-like mechanics in the cista::raw namespace are vulnerable to refe...

5.3CVSS5.4AI score0.00044EPSS

Exploits0References2

OSV•added 2025/10/17 2:56 p.m.•1 views

OESA-2025-2481 poppler security update

is a PDF rendering library. Security Fixes: Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested structures within the metadata such as GTSPDFEVersion of a PDF document, e.g., a regular expression for a long pdfsubver string. This occurs in...

8.6CVSS6.7AI score0.00028EPSS

Exploits0References3

Tenable Nessus•added 2025/10/14 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-52885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions...

8.6CVSS5.3AI score0.00028EPSS

Exploits0References3

SUSE CVE•added 2025/10/13 11:23 p.m.•1 views

SUSE CVE-2025-52885

Poppler ia a library for rendering PDF files, and examining or modifying their structure. A use-after-free write vulnerability has been detected in versions Poppler prior to 25.10.0 within the StructTreeRoot class. The issue arises from the use of raw pointers to elements of a std::vector, which...

7.3CVSS6.7AI score0.00028EPSS

Exploits0References7

RedhatCVE•added 2025/10/13 8:22 a.m.•1 views

CVE-2025-52885

8.6CVSS6.6AI score0.00028EPSS

Exploits0References6

NVD•added 2025/10/10 11:15 p.m.•1 views

CVE-2025-52885

8.6CVSS0.00028EPSS

Exploits0References4

OSV•added 2025/10/10 11:15 p.m.•1 views

DEBIAN-CVE-2025-52885

8.6CVSS5.3AI score0.00028EPSS

Exploits0References1

OSV•added 2025/10/10 11:15 p.m.•0 views

UBUNTU-CVE-2025-52885

8.6CVSS7.2AI score0.00028EPSS

Exploits0References6

Snyk•added 2025/10/10 10:41 p.m.•3 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the StructTreeRoot class due to the use of raw pointers to elements of a std::vector, which can result in dangling pointers when the vector is resized. An attacker can potentially execute arbitrary code or cause a deni...

8.6CVSS7.1AI score0.00028EPSS

Exploits0References3

CVE•added 2025/10/10 10:11 p.m.•16 views

CVE-2025-52885

CVE-2025-52885 affects Poppler before 25.10.0, where a use-after-free (write) vulnerability arises from raw pointers to elements of a std::vector stored in refToParentMap within StructTreeRoot. Pointers may become dangling when the vector resizes, due to vector reallocation moving elements and in...

8.6CVSS6.3AI score0.00028EPSS

Exploits0References4

OSV•added 2025/10/10 10:11 p.m.•1 views

CVE-2025-52885 GHSL-2025-042: Poppler has Use-After-Free

8.6CVSS6.7AI score

Exploits0References3

Vulnrichment•added 2025/10/10 10:11 p.m.•1 views

CVE-2025-52885 GHSL-2025-042: Poppler has Use-After-Free

8.6CVSS6.3AI score0.00028EPSS

Exploits0References3

AlpineLinux•added 2025/10/10 10:11 p.m.•4 views

CVE-2025-52885

8.6CVSS6.7AI score0.00028EPSS

Exploits0References4

Debian CVE•added 2025/10/10 10:11 p.m.•4 views

CVE-2025-52885

8.6CVSS5.3AI score0.00028EPSS

Exploits0

EUVD•added 2025/10/10 10:11 p.m.•3 views

EUVD-2025-33795

8.6CVSS6.2AI score0.00028EPSS

Exploits0References3

Positive Technologies•added 2025/10/10 12:0 a.m.•2 views

PT-2025-41613

Name of the Vulnerable Software and Affected Versions Poppler versions prior to 25.10.0 Description Poppler is a library used for rendering PDF files and modifying their structure. A use-after-free write issue exists due to the use of raw pointers to elements within a std::vector in the...

8.6CVSS6.4AI score0.00028EPSS

Exploits0References53

CNNVD•added 2025/10/10 12:0 a.m.•1 views

Poppler 资源管理错误漏洞

Poppler is a PDF rendering library from Poppler open source. A resource management error vulnerability exists in versions of Poppler prior to 25.10.0, which stems from the use of raw pointers to std::vector elements in the StructTreeRoot class, which could lead to reuse after release...

8.6CVSS6.3AI score0.00028EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-24931

Malware in sbrugna...

7.5CVSS7.6AI score0.00165EPSS

Exploits0References2

Github Security Blog•added 2025/09/02 5:22 p.m.•2 views

arenavec has multiple memory corruption vulnerabilities in safe APIs

The crate has the following vulnerabilities: - The public trait arenavec::common::AllocHandle allows the return of raw pointers through its methods allocate and allocateorextend. However, the trait is not marked as unsafe, meaning users of the crate may implement it under the assumption that the...

7.1AI score

Exploits0References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by