Xpdf CVE Vulnerabilities & CVE List (82)

Products (CPE): — CVEs: 82

Xpdf vulnerability overview

Aggregates CVE and security vulnerability intelligence across all Xpdf-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk memory corruption and vendor risk buffer overflow and related problems; some flaws may lead to vendor impact memory corruption, affecting vendor surface software deployment scenarios.

Vulnerability distribution trend (last 24 months)

Showing 8182 of 82 CVEs
«« First « Prev Page 5 / 5 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2010-3702 The Gfx::getPos function in the PDF parser in xpdf before 3.02pl5, poppler 0.8.7 and possibly other versions up to 0.15.1, CUPS, kdegraphics, and possibly other products allows context-dependent attackers to cause a denial of service (crash) via unknown vectors that trigger an uninitialized pointer dereference. [email protected] 7.5 2.76% 2010-11-05 2026-06-16
CVE-2007-3387 Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used in (1) poppler before 0.5.91, (2) gpdf before 2.8.2, (3) kpdf, (4) kdegraphics, (5) CUPS, (6) PDFedit, and other products, might allow remote attackers to execute arbitrary code via a crafted PDF file that triggers a stack-based buffer overflow in the StreamPredictor::getNextLine function. [email protected] 6.8 8.57% 2007-07-30 2026-06-16
«« First « Prev Page 5 / 5 Next »
cvelogic Threat Intelligence