CVE-2022-30524

HIGH LAB

Xpdf - Out-of-Bounds Write

Title source: rule

Description

There is an invalid memory access in the TextLine class in TextOutputDev.cc in Xpdf 4.0.4 because the text extractor mishandles characters at large y coordinates. It can be triggered by (for example) sending a crafted pdf file to the pdftotext binary, which allows a remote attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.

Exploits (1)

nomisec WORKING POC 1 stars

by rishvic · poc

https://github.com/rishvic/xpdf-docker

View Code ZIP pw:eip

References (1)

Core 1

Core References

Exploit, Vendor Advisory x_refsource_misc

https://forum.xpdfreader.com/viewtopic.php?f=3&t=42261

Scores

CVSS v3 7.8

EPSS 0.0221

EPSS Percentile 84.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Lab Environment

COMMUNITY

Community Lab

docker pull gcc:bullseye

https://github.com/rishvic/xpdf-docker

View in Library

Details

CWE

CWE-787

Status published

Products (1)

xpdfreader/xpdf 4.0.4

Published May 09, 2022

Tracked Since Feb 18, 2026