Vulnerabilities (CVE)

Filtered by vendor Podofo Project Subscribe

Filtered by product Podofo

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-9687	2 Fedoraproject, Podofo Project	2 Fedora, Podofo	2020-08-24	7.5 HIGH	9.8 CRITICAL
PoDoFo 0.9.6 has a heap-based buffer overflow in PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp.
CVE-2017-8378	1 Podofo Project	1 Podofo	2019-10-03	7.5 HIGH	9.8 CRITICAL
Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors related to m_offsets.size.
CVE-2015-8981	1 Podofo Project	1 Podofo	2017-03-21	7.5 HIGH	9.8 CRITICAL
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to m_offsets.size.