Lucene search
K

32 matches found

UbuntuCve
UbuntuCve
added 2026/01/10 5:16 a.m.5 views

CVE-2026-22691

pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for malformed startxref. An attacker who uses this vulnerability can craft a PDF which leads to possibly long runtimes for invalid startxref entries. When rebuilding the cross-referen...

6.9CVSS5.7AI score0.00391EPSS
Exploits0References5
EUVD
EUVD
added 2026/01/10 4:46 a.m.6 views

EUVD-2026-1877

pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for malformed startxref. An attacker who uses this vulnerability can craft a PDF which leads to possibly long runtimes for invalid startxref entries. When rebuilding the cross-referen...

6.9CVSS6.2AI score0.00391EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-20470

Malware in sbrugna...

9.8CVSS9.2AI score0.01087EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-6299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file...

6.5CVSS4.7AI score0.00942EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:6 a.m.8 views

CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS6.8AI score0.00942EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:42 p.m.9 views

CVE-2020-6115

An exploitable vulnerability exists in the cross-reference table repairing functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242. While searching for an object identifier in a malformed document that is missing from the cross-reference table, the application will save a reference to the...

8.8CVSS6.8AI score0.02731EPSS
Exploits1References1
OSV
OSV
added 2023/11/26 11:15 p.m.22 views

CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS6.7AI score
Exploits0References4
Prion
Prion
added 2023/11/26 11:15 p.m.21 views

Design/Logic Flaw

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

5CVSS7AI score0.00942EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2023/11/26 11:15 p.m.15 views

UBUNTU-CVE-2023-6299

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

6.5CVSS4.9AI score0.00942EPSS
Exploits0References4
CVE
CVE
added 2023/11/26 11:0 p.m.66 views

CVE-2023-6299

CVE-2023-6299 affects Apryse iText 8.0.1, with a memory leak in PdfDocument.java’s Reference Table Handler. The issue could be triggered remotely and has public exploits. The vendor fixed it in iText Core 8.0.2 (released Oct 25, 2023); upgrading to 8.0.2 or later is recommended.

6.5CVSS5.4AI score0.00942EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/11/26 11:0 p.m.28 views

CVE-2023-6299 Apryse iText Reference Table PdfDocument.java memory leak

A vulnerability, which was classified as problematic, has been found in Apryse iText 8.0.1. This issue affects some unknown processing of the file PdfDocument.java of the component Reference Table Handler. The manipulation leads to memory leak. The attack may be initiated remotely. The exploit ha...

5CVSS6.7AI score0.00942EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/11/26 12:0 a.m.6 views

Apryse iText Security Vulnerability

iText is an open source library for creating and manipulating PDF files in Java. It is written by Bruno Lowagie, Paulo Soares and others. A security vulnerability exists in Apryse iText version 8.0.2, which stems from some unknown handling of the file PdfDocument.java in the component Reference...

6.5CVSS6.8AI score0.00942EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/11/26 12:0 a.m.7 views

PT-2023-32599 · Apryse · Apryse Itext

Name of the Vulnerable Software and Affected Versions: Apryse iText version 8.0.1 Description: A memory leak issue has been found in the Reference Table Handler component, specifically affecting the processing of the file PdfDocument.java. This issue can be exploited remotely, leading to a memory...

6.5CVSS7.1AI score0.00942EPSS
Exploits0References10
OSV
OSV
added 2021/10/21 8:15 p.m.13 views

CVE-2021-41168

Snudown is a reddit-specific fork of the Sundown Markdown parser used by GitHub, with Python integration added. In affected versions snudown was found to be vulnerable to denial of service attacks to its reference table implementation. References written in markdown referencename:...

6.5CVSS6.7AI score
Exploits0References2
Cvelist
Cvelist
added 2021/10/21 8:10 p.m.25 views

CVE-2021-41168 Hash-Collision Denial-of-Service Vulnerability in snudown

Snudown is a reddit-specific fork of the Sundown Markdown parser used by GitHub, with Python integration added. In affected versions snudown was found to be vulnerable to denial of service attacks to its reference table implementation. References written in markdown referencename:...

6.5CVSS6.6AI score0.00882EPSS
Exploits1References2
OSV
OSV
added 2021/08/11 8:15 p.m.7 views

CVE-2021-33793

Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion...

9.8CVSS5.8AI score0.01087EPSS
Exploits0References1
NVD
NVD
added 2021/08/11 8:15 p.m.38 views

CVE-2021-33793

Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion...

9.8CVSS0.01087EPSS
Exploits0References1
Prion
Prion
added 2021/08/11 8:15 p.m.21 views

Out-of-bounds

Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion...

7.5CVSS9.5AI score0.01087EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2020/09/17 1:15 p.m.36 views

CVE-2020-6113

An exploitable vulnerability exists in the object stream parsing functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242 when updating its cross-reference table. When processing an object stream from a PDF document, the application will perform a calculation in order to allocate memory for...

8.8CVSS0.6862EPSS
Exploits1References1
OSV
OSV
added 2020/09/17 1:15 p.m.2 views

CVE-2020-6115

An exploitable vulnerability exists in the cross-reference table repairing functionality of Nitro Software, Inc.’s Nitro Pro 13.13.2.242. While searching for an object identifier in a malformed document that is missing from the cross-reference table, the application will save a reference to the...

7.8CVSS7.1AI score
Exploits0References1
Rows per page
Query Builder