VYPR
Medium severity5.5NVD Advisory· Published Sep 3, 2018· Updated Jun 17, 2026

CVE-2018-16368

CVE-2018-16368

Description

SplashXPath::strokeAdjust in splash/SplashXPath.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Xpdf/Xpdfinferred2 versions
    = 4.00+ 1 more
    • (no CPE)range: = 4.00
    • (no CPE)range: =4.00

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.