HIGH🇬🇧 English

CVE-2022-38928

CVSS 7.8v3.1pub. 2022-09-21upd. 2025-05-27

XPDF 4.04 is vulnerable to Null Pointer Dereference in FoFiType1C.cc:2393.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Xpdfreader Xpdf

    APP
    Xpdfreader
    4.04
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2021-30860HIGH7.8⚠ KEVten sam produkt

An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2021-...

CVE-2021-36493HIGH7.5ten sam produkt

Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows attackers to crash the application via crafted ...

CVE-2022-38222HIGH7.8ten sam produkt

There is a use-after-free issue in JBIG2Stream::close() located in JBIG2Stream.cc in Xpdf 4.04. It can be trig...

CVE-2022-38171HIGH7.8ten sam produkt

Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg()...

CVE-2022-33108HIGH7.8ten sam produkt

XPDF v4.04 was discovered to contain a stack overflow vulnerability via the Object::Copy class of object.cc fi...

CVE-2022-38928 — HIGH 7.8 | CVEbaza.pl