VYPR
Medium severity5.5NVD Advisory· Published Feb 24, 2018· Updated Jun 17, 2026

CVE-2018-7454

CVE-2018-7454

Description

A NULL pointer dereference in XFAForm::scanFields in XFAForm.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.

Affected products

2
  • Xpdf/Xpdfinferred2 versions
    =4.00+ 1 more
    • (no CPE)range: =4.00
    • (no CPE)range: = 4.00

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.