Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-7867

In Xpdf 4.05 (and earlier), very large coordinates in a page box can cause an integer overflow and divide-by-zero.

Published

2024-08-15T20:15:18.967

Last Modified

2024-08-28T21:59:33.973

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 6.2 (MEDIUM)

Weaknesses

Type: Secondary
CWE-190
CWE-369
Type: Primary
CWE-190
CWE-369

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	xpdfreader	xpdf	≤ 4.05	Yes

References

https://www.xpdfreader.com/security-bug/CVE-2024-7867.html Vendor Advisory ([email protected])