Lucene search
+L

39 matches found

Prion
Prion
added 2021/11/10 10:15 p.m.21 views

Stack overflow

pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch...

7.5CVSS9.7AI score0.01706EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/11/10 9:25 p.m.51 views

CVE-2020-23878

Summary: CVE-2020-23878 affects pdf2json v0.71, with a stack buffer overflow in the XRef::fetch function. The vulnerability is documented across multiple feeds as a buffer overflow in a Java-based PDF-to-JSON library (pdf2json). Impact: CVSS metrics indicate high to critical severity (CVSS‑2.0: b...

9.8CVSS9.7AI score0.01706EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/11/10 9:25 p.m.31 views

CVE-2020-23878

pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch...

9.8AI score0.01706EPSS
Exploits1References2
CNVD
CNVD
added 2021/07/22 12:0 a.m.14 views

PDF2JSON XRef::fetch Denial of Service Vulnerability

PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. A security vulnerability exists in the XRef::fetch function in PDF2JSON version 0.70. An attacker could exploit this vulnerability to cause a denial of service...

5.5CVSS5.4AI score0.00745EPSS
Exploits1References1
NVD
NVD
added 2021/07/21 6:15 p.m.30 views

CVE-2020-19464

An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a stack overflow...

5.5CVSS0.00745EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/07/21 5:9 p.m.30 views

CVE-2020-19464

An issue has been found in function XRef::fetch in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a stack overflow...

5.6AI score0.00745EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/07/21 12:0 a.m.5 views

PDF2JSON 缓冲区错误漏洞

PDF2JSON is a conversion library based on XPDF 3.02 that can be used to convert PDF pages page by page to JSON and XML formats. A security vulnerability exists in the XRef::fetch function in PDF2JSON version 0.70. An attacker could exploit this vulnerability to cause a denial of service...

5.5CVSS5.7AI score0.00745EPSS
Exploits1References3
NVD
NVD
added 2019/09/06 10:15 p.m.31 views

CVE-2019-16088

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...

5.5CVSS5.5AI score0.00907EPSS
Exploits1References1
OSV
OSV
added 2019/09/06 10:15 p.m.6 views

CVE-2019-16088

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...

5.5CVSS6.7AI score0.00907EPSS
Exploits1References1
Prion
Prion
added 2019/09/06 10:15 p.m.27 views

Design/Logic Flaw

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...

4.3CVSS5.3AI score0.00907EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/09/06 10:15 p.m.33 views

CVE-2019-16088

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...

5.5CVSS6.8AI score0.00907EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2019/09/06 9:25 p.m.54 views

CVE-2019-16088

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...

5.5CVSS2.8AI score0.00907EPSS
Exploits1
Cvelist
Cvelist
added 2019/09/06 9:25 p.m.41 views

CVE-2019-16088

Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive calls to Catalog::countPageTree in Catalog.cc...

5.5AI score0.00907EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2018/09/03 12:29 a.m.21 views

CVE-2018-16369

XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...

5.5CVSS6.8AI score0.01618EPSS
Exploits1References2
Prion
Prion
added 2018/09/03 12:29 a.m.21 views

Code injection

XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...

4.3CVSS5.2AI score0.01618EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/09/03 12:29 a.m.1 views

DEBIAN-CVE-2018-16369

XRef::fetch in XRef.cc in Xpdf 4.00 allows remote attackers to cause a denial of service stack consumption via a crafted pdf file, related to AcroForm::scanField, as demonstrated by pdftohtml. NOTE: this might overlap CVE-2018-7453...

5.5CVSS6.3AI score0.01618EPSS
Exploits1References1
CNVD
CNVD
added 2018/09/03 12:0 a.m.4 views

Xpdf Denial of Service Vulnerability (CNVD-2019-17490)

Xpdf is a free PDF viewer and toolkit that includes a text extractor, image converter, HTML converter and more. A denial of service vulnerability exists in XRef::fetch in Xpdf 4.00 in XRef.cc. A remote attacker can exploit this vulnerability to cause a denial of service stack consumption via a...

5.5CVSS6AI score0.01618EPSS
Exploits1References1
CVE
CVE
added 2018/09/03 12:0 a.m.72 views

CVE-2018-16369

CVE-2018-16369 affects Xpdf 4.00 (XRef::fetch) where a crafted PDF can cause a stack DoS via AcroForm::scanField, as demonstrated by pdftohtml. The vulnerability is noted to possibly overlap CVE-2018-7453 (infinite recursion in AcroForm::scanField). Multiple advisories (e.g., Slackware SSA:2024-0...

5.5CVSS5.1AI score0.01618EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2018/09/02 12:0 a.m.9 views

PT-2018-3976 · Xpdf +2 · Xpdf +2

Name of the Vulnerable Software and Affected Versions: Xpdf version 4.00 Description: The issue is related to errors in the code of the Xpdf software, specifically in the XRef::fetch function in XRef.cc. It allows remote attackers to cause a denial of service, which is a stack consumption, via a...

9.1CVSS5.8AI score0.01618EPSS
Exploits22References69
Rows per page
Query Builder