Podofo Security Vulnerabilities and Issues — Podofo CVE List

Lucene search

Podofo ProjectPodofo

5 matches found

CVE•added 2017/04/21 4:59 p.m.•142 views

CVE-2017-7994

The function TextExtractor::ExtractText in TextExtractor.cpp:77 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.

6.5CVSS7.2AI score0.00645EPSS

CVE•added 2018/05/18 7:29 p.m.•76 views

CVE-2018-11256

An issue was discovered in PoDoFo 0.9.5. The function PdfDocument::Append() in PdfDocument.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.

6.5CVSS6.7AI score0.00565EPSS

CVE•added 2019/02/27 5:29 p.m.•75 views

CVE-2018-20797

An issue was discovered in PoDoFo 0.9.6. There is an attempted excessive memory allocation in PoDoFo::podofo_calloc in base/PdfMemoryManagement.cpp when called from PoDoFo::PdfPredictorDecoder::PdfPredictorDecoder in base/PdfFiltersPrivate.cpp.

6.5CVSS6.3AI score0.0025EPSS

CVE•added 2018/09/17 6:29 p.m.•49 views

CVE-2018-14320

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of PoDoFo. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within PdfEncoding::ParseT...

6.5CVSS7.3AI score0.00525EPSS

CVE•added 2023/05/10 4:15 p.m.•29 views

CVE-2023-31555

podofoinfo 0.10.0 was discovered to contain a segmentation violation via the function PoDoFo::PdfObject::DelayedLoad.

6.5CVSS6.3AI score0.0009EPSS