Lucene search
HistorySep 30, 2022 - 5:15 a.m.
CVE-2022-41844
xpdf 4.04
xref::fetch
crash.
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
51.8%
An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088.
Affected configurations
Node
xpdfreaderxpdfMatch4.04
| Vendor | Product | Version | CPE |
|---|---|---|---|
| xpdfreader | xpdf | 4.04 | cpe:2.3:a:xpdfreader:xpdf:4.04:*:*:*:*:*:*:* |
Related
alpinelinux
alpinelinux
CVE-2022-41844
2022-09-30 05:15:11
cve
cve
cvelist
cvelist
ubuntucve
ubuntucve
debiancve
debiancve
prion
prion
Design/Logic Flaw
2022-09-30 05:15:00
Design/Logic Flaw
2019-09-06 22:15:00
Code injection
2018-09-03 00:29:00
veracode
veracode
Crash Issue
2024-04-10 17:09:56
nvd
nvd
CVE-2019-16088
2019-09-06 22:15:11
CVE-2018-16369
2018-09-03 00:29:00
nessus
nessus
GLSA-202409-25 : Xpdf: Multiple Vulnerabilities
2024-09-25 00:00:00
redhatcve
redhatcve
CVE-2018-16369
2022-05-20 23:18:07
openvas
openvas
Slackware: Security Advisory (SSA:2024-040-01)
2024-02-12 00:00:00
Mageia: Security Advisory (MGASA-2024-0035)
2024-02-12 00:00:00
slackware
slackware
[slackware-security] xpdf
2024-02-09 21:51:14
gentoo
gentoo
Xpdf: Multiple Vulnerabilities
2024-09-25 00:00:00
mageia
mageia
Updated xpdf packages fix security vulnerabilities
2024-02-10 22:02:27
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.002
Percentile
51.8%
Related for NVD:CVE-2022-41844