Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-41844

An issue was discovered in Xpdf 4.04. There is a crash in XRef::fetch(int, int, Object*, int) in xpdf/XRef.cc, a different vulnerability than CVE-2018-16369 and CVE-2019-16088.

Published

2022-09-30T05:15:11.703

Last Modified

2025-05-20T20:15:26.697

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses

Type: Primary
CWE-787
Type: Secondary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	xpdfreader	xpdf	4.04	Yes

References

http://www.xpdfreader.com/download.html Patch, Vendor Advisory ([email protected])
https://forum.xpdfreader.com/viewtopic.php?f=1&t=42340&p=43928&hilit=gfseek#p43928 Exploit, Issue Tracking, Vendor Advisory ([email protected])
https://forum.xpdfreader.com/viewtopic.php?f=3&t=42308&p=43844&hilit=XRef%3A%3Afetch#p43844 Issue Tracking, Vendor Advisory ([email protected])
http://www.xpdfreader.com/download.html Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://forum.xpdfreader.com/viewtopic.php?f=1&t=42340&p=43928&hilit=gfseek#p43928 Exploit, Issue Tracking, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://forum.xpdfreader.com/viewtopic.php?f=3&t=42308&p=43844&hilit=XRef%3A%3Afetch#p43844 Issue Tracking, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)