SecAlerts
CVE ListPricingSign Up
xpdf logo

xpdf

Security Risk Profile

11
/100
low

Security Risk Score

Comprehensive risk assessment based on 51 vulnerabilities, EPSS scores, exploitation status, and remediation availability.

📅 Data spans from October 13, 2000 to present

51
Total CVEs
28
Critical+High
0
Exploited
10
Unpatched

Threat Assessment

Avg CVSS
6.1
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
10
Critical/High
Risk Level
11/100
low

Severity Distribution

Critical
7
High
21
Medium
13
Low
9

Exploit Likelihood

>50% chance
0
20-50%
0
5-20%
0
<5%
10

Age Distribution

Common Weaknesses (CWE)

1
Buffer Overflow
14
2
Integer Overflow
13
3
Input Validation
4
4
Null Pointer Dereference
2
5
Code Injection
1

Most Affected Products

1. xpdf Xpdf167
2. Debian Debian Linux124
3. SUSE SuSE Linux114
4. Easy Software Products Cups86
5. redhat Enterprise Linux66

Recent Vulnerabilities

See more →
CVE-2026-4407
CVSS 2.1EPSS 0%low

Out-of-bounds array write in Xpdf 4.06 due to missing validation

3/18/2026🔧 No Patch
CVE-2025-11896
CVSS 2.1low

Stack overflow in Xpdf 4.05 due to object loop in PDF CMap

10/16/2025🔧 No Patch
CVE-2025-3154
CVSS 2.1EPSS 0%low

Out-of-bounds array write due to invalid VerticesPerRow in Xpdf 4.05

4/2/2025🔧 No Patch
CVE-2025-2574
CVSS 2.1EPSS 0%low

Out-of-bounds array write in Xpdf 4.05 due to incorrect integer overflow checking

3/20/2025🔧 No Patch
CVE-2024-4976
CVSS 5.5EPSS 0%medium

Out-of-bounds array write in Xpdf 4.05 due to missing object type check

5/15/2024🔧 No Patch
CVE-2024-4568
CVSS 5.5EPSS 0%medium

Stack overflow in Xpdf 4.05 due to object loop in PDF resources

5/6/2024🔧 No Patch
CVE-2024-4141
CVSS 5.5EPSS 0%medium

Out-of-bounds array write in Xpdf 4.05 due to incorrect bounds check

4/24/2024🔧 No Patch
CVE-2024-3900
CVSS 5.5EPSS 0%medium

Out-of-bounds stack array write in Xpdf 4.05 due to missing zero check

4/17/2024🔧 No Patch
CVE-2024-3248
CVSS 5.5EPSS 0%medium

Stack overflow in Xpdf 4.05 due to object loop in attachments

4/2/2024🔧 No Patch
CVE-2024-3247
CVSS 5.5EPSS 0%medium

Stack overflow in Xpdf 4.05 due to object loop in PDF object stream

4/2/2024🔧 No Patch

Monitor xpdf in Real-Time

Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
Powered bySecAlerts

Monitor Your Software Stack in Real-Time

Get instant alerts when vulnerabilities are discovered in your software stack. Stay ahead of security threats with SecAlerts.

Start Free TrialBook a Demo
AboutNewsDocumentationTermsContact

© 2026 SecAlerts Pty Ltd. All rights reserved.