CVE-2022-38334
MEDIUMxpdf < 4.04 - Stack Overflow in Catalog::countPageTree()
Title source: llmDescription
XPDF v4.04 and earlier was discovered to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc.
References (2)
Core 2
Core References
Exploit, Vendor Advisory
https://forum.xpdfreader.com/viewtopic.php?f=3&t=42122
Exploit, Vendor Advisory
https://forum.xpdfreader.com/viewtopic.php?f=3&t=42314&p=43872
Scores
CVSS v3
5.5
EPSS
0.0038
EPSS Percentile
29.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
CWE
CWE-674
Status
published
Products (1)
xpdfreader/xpdf
< 4.04
Published
Sep 15, 2022
Tracked Since
Feb 18, 2026