Poppler
Security Risk Profile
45
/100
mediumSecurity Risk Score
Comprehensive risk assessment based on 62 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from December 31, 2005 to present
62
Total CVEs
16
Critical+High
0
Exploited
8
Unpatched
Threat Assessment
Avg CVSS
5
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
8
Critical/High
Risk Level
45/100
medium
Severity Distribution
Critical
7High
9Medium
28Low
16Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
3Age Distribution
Common Weaknesses (CWE)
1
Integer Overflow
20
2
Buffer Overflow
13
3
Null Pointer Dereference
9
4
Use After Free
4
5
Input Validation
4
Most Affected Products
1. Poppler Poppler1052
2. Apple CUPS576
3. Glyphandcog Xpdfreader220
4. Foolabs Xpdf160
5. Debian Debian Linux75
Recent Vulnerabilities
See more →CVE-2018-25306
CVSS 6.9medium
PDFunite 0.41.0 Buffer Overflow via Malformed PDF
4/29/2026🔧 No Patch
CVE-2026-10118
CVSS 7.8high
Poppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplication
4/21/2026
REDHAT-BUG-2460428
CVSS 7.0high
4/21/2026🔧 No Patch
CVE-2025-52885
CVSS 6.1medium
GHSL-2025-042: Use After Free (UAF) in Poppler - CVE-2025-52885
10/10/2025🔧 No Patch
GHSL-2025-042
unknown
Use After Free (UAF) in Poppler - CVE-2025-52885
10/10/2025🔧 No Patch
CVE-2025-43718
CVSS 2.9low
10/1/2025🔧 No Patch
CVE-2025-50422
CVSS 2.9low
8/4/2025🔧 No Patch
CVE-2025-52886
CVSS 5.9medium
GHSL-2025-054: Use After Free (UAF) in Poppler - CVE-2025-52886
7/1/2025
GHSL-2025-054
unknown
Use After Free (UAF) in Poppler - CVE-2025-52886
7/1/2025🔧 No Patch
CVE-2025-43903
CVSS 4.3EPSS 0%medium
4/18/2025
Monitor Poppler in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.