Jose Angel Torres

1 exploit Active since Feb 2026
CVE-2026-27628 WRITEUP HIGH WRITEUP
pypdf < 6.7.2 - Denial of Service via Infinite Loop
pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires reading the file. This has been fixed in pypdf 6.7.2. As a workaround, one may apply the patch manually.
CVSS 7.5