Pdf2json
by Flexpaper
Source repositories
CVEs (16)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-23878 | Cri | 0.64 | 9.8 | 0.02 | Nov 10, 2021 | pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch. | ||
| CVE-2018-14947 | Hig | 0.57 | 8.8 | 0.02 | Aug 5, 2018 | An issue has been found in PDF2JSON 0.69. XmlFontAccu::CSStyle in XmlFonts.cc has Mismatched Memory Management Routines (operator new [] versus operator delete). | ||
| CVE-2018-14946 | Hig | 0.57 | 8.8 | 0.02 | Aug 5, 2018 | An issue has been found in PDF2JSON 0.69. The HtmlString class in ImgOutputDev.cc has Mismatched Memory Management Routines (malloc versus operator delete). | ||
| CVE-2024-28699 | Hig | 0.51 | 7.8 | 0.00 | Apr 22, 2024 | A buffer overflow vulnerability in pdf2json v0.70 allows a local attacker to execute arbitrary code via the GString::copy() and ImgOutputDev::ImgOutputDev function. | ||
| CVE-2020-23879 | Hig | 0.49 | 7.5 | 0.01 | Nov 10, 2021 | pdf2json v0.71 was discovered to contain a NULL pointer dereference in the component ObjectStream::getObject. | ||
| CVE-2020-19475 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function CCITTFaxStream::lookChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid write of size 2 . | ||
| CVE-2020-19474 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function Gfx::doShowText in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Use After Free . | ||
| CVE-2020-19473 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an uncaught floating point exception. | ||
| CVE-2020-19472 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function DCTStream::readHuffSym in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 2 . | ||
| CVE-2020-19471 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4 . | ||
| CVE-2020-19470 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function DCTStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a NULL pointer dereference (invalid read of size 1) . | ||
| CVE-2020-19468 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function EmbedStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a null pointer derefenrece (invalid read of size 8) . | ||
| CVE-2020-19467 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Illegal Use After Free . | ||
| CVE-2020-19466 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 1 . | ||
| CVE-2020-19465 | Med | 0.36 | 5.5 | 0.01 | Jul 21, 2021 | An issue has been found in function ObjectStream::getObject in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4 . | ||
| CVE-2020-18750 | Hig | 0.00 | 7.8 | 0.01 | Feb 5, 2021 | Buffer overflow in pdf2json 0.69 allows local users to execute arbitrary code by converting a crafted PDF file. |
- risk 0.64cvss 9.8epss 0.02
pdf2json v0.71 was discovered to contain a stack buffer overflow in the component XRef::fetch.
- risk 0.57cvss 8.8epss 0.02
An issue has been found in PDF2JSON 0.69. XmlFontAccu::CSStyle in XmlFonts.cc has Mismatched Memory Management Routines (operator new [] versus operator delete).
- risk 0.57cvss 8.8epss 0.02
An issue has been found in PDF2JSON 0.69. The HtmlString class in ImgOutputDev.cc has Mismatched Memory Management Routines (malloc versus operator delete).
- risk 0.51cvss 7.8epss 0.00
A buffer overflow vulnerability in pdf2json v0.70 allows a local attacker to execute arbitrary code via the GString::copy() and ImgOutputDev::ImgOutputDev function.
- risk 0.49cvss 7.5epss 0.01
pdf2json v0.71 was discovered to contain a NULL pointer dereference in the component ObjectStream::getObject.
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function CCITTFaxStream::lookChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid write of size 2 .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function Gfx::doShowText in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Use After Free .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an uncaught floating point exception.
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function DCTStream::readHuffSym in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 2 .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function DCTStream::decodeImage in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4 .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function DCTStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a NULL pointer dereference (invalid read of size 1) .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function EmbedStream::getChar in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to a null pointer derefenrece (invalid read of size 8) .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Illegal Use After Free .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 1 .
- risk 0.36cvss 5.5epss 0.01
An issue has been found in function ObjectStream::getObject in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an invalid read of size 4 .
- risk 0.00cvss 7.8epss 0.01
Buffer overflow in pdf2json 0.69 allows local users to execute arbitrary code by converting a crafted PDF file.