Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Xpdfreader Subscribe
Filtered by product Xpdf
Total 65 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-7452 1 Xpdfreader 1 Xpdf 2018-03-17 4.3 MEDIUM 5.5 MEDIUM
A NULL pointer dereference in JPXStream::fillReadBuf in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.
CVE-2018-7454 1 Xpdfreader 1 Xpdf 2018-03-17 4.3 MEDIUM 5.5 MEDIUM
A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.
CVE-2018-7455 1 Xpdfreader 1 Xpdf 2018-03-17 4.3 MEDIUM 5.5 MEDIUM
An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.
CVE-2018-7173 1 Xpdfreader 1 Xpdf 2018-03-09 4.3 MEDIUM 5.5 MEDIUM
A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.
CVE-2018-7175 1 Xpdfreader 1 Xpdf 2018-03-06 4.3 MEDIUM 5.5 MEDIUM
An issue was discovered in xpdf 4.00. A NULL pointer dereference in readCodestream allows an attacker to cause denial of service via a JPX image with zero components.