Where
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how poppler compares to other vendors in security performance

View Risk Score →

Poppler pdfunitePDFunite 0.41.0 Buffer Overflow via Malformed PDF

Risk 38
Severity
6.9
First published (updated )
CVE-2018-25306

Poppler PopplerPoppler: integer overflow in poppler splashoutputdev::tilingpatternfill leads to heap buffer overflow via unchecked dimension multiplication

Risk 68
Severity
7.8
First published (updated )
CVE-2026-10118

Poppler PopplerBuffer Overflow, Integer Overflow, Null Pointer Dereference

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2460428

Poppler PopplerGHSL-2025-042: Use After Free (UAF) in Poppler - CVE-2025-52885

Risk 72
Severity
6.1
First published (updated )
CVE-2025-52885

Poppler PopplerUse After Free (UAF) in Poppler - CVE-2025-52885

Risk 55
First published (updated )
Advisory
GHSL-2025-042
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Poppler PopplerPoppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested…

Risk 16
Severity
2.9
First published (updated )
CVE-2025-43718

Cairo CairoCairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face == NULL" assertion …

Risk 16
Severity
2.9
First published (updated )
CVE-2025-50422

Poppler PopplerGHSL-2025-054: Use After Free (UAF) in Poppler - CVE-2025-52886

Risk 38
Severity
5.9
First published (updated )
CVE-2025-52886

Poppler PopplerUse After Free (UAF) in Poppler - CVE-2025-52886

Risk 50
First published (updated )
Advisory
GHSL-2025-054

Poppler PopplerLast updated 30 April 2025

Risk 16
Severity
4.3
EPSS
0.01%
First published (updated )
CVE-2025-43903
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Poppler PopplerInteger Overflow

Risk 23
Severity
5.5
EPSS
0.02%
First published (updated )
CVE-2025-32364

Poppler PopplerLast updated 8 April 2025

Risk 38
Severity
7.1
EPSS
0.02%
First published (updated )
CVE-2025-32365

Poppler PopplerAn issue was discovered in Poppler 0.74.0. There is a heap-based buffer over-read in the function PS…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1696636

Poppler PopplerPDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumpt…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1691724

Poppler PopplerPoppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1686802
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Poppler PopplerA heap-based buffer underwrite exists in ImageStream::getLine() located at Stream.cc in Poppler 0.74…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1683632

Poppler PopplerIn Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::ge…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1672419

Poppler PopplerA flaw was found in Poppler 0.72.0. The PDFDoc::setup class in PDFDoc.cc allows attackers to cause a…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1665273

Poppler PopplerNull Pointer Dereference

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1665266

Poppler PopplerA flaw was found in Poppler 0.72.0. A reachable Object::dictLookup assertion in FileSpec class in Fi…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1665263
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Poppler PopplerA flaw was found in Poppler 0.72.0. A reachable Object::getString assertion allows attackers to caus…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1665259

Poppler PopplerNull Pointer Dereference

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1649457

Poppler PopplerNull Pointer Dereference

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1649450

Poppler PopplerAn issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSp…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1649440

Poppler PopplerAn issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to deni…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1649435
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Poppler PopplerAn issue was discovered in Poppler 0.71.0. There is a memory leak in GfxColorSpace::setDisplayProfil…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1646546

Poppler PopplerA flaw was found in Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite re…

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1626618

Poppler PopplerNull Pointer Dereference

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1576169

Poppler PopplerBuffer Overflow

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1466442

xpdf XpdfAn insufficient escape sequences sanitization flaw was found in the way xpdf, a PDF file viewer for …

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-789936
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203