CVE-2025-50422

LOW

Cairo < 1.18.4 - Reachable Assertion in cairo-ft-font.c

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-50422. PoCs published by Landw-hub.

AI-analyzed exploit summary The repository describes an information leak vulnerability in Poppler before version 25.04.0, where heap memory containing PDF object streams is not properly cleared when pdftocairo renders a malicious PDF. The issue was acknowledged and fixed by the vendor.

Description

Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled->face == NULL" assertion failure for _cairo_ft_unscaled_font_fini in cairo-ft-font.c.

Exploits (1)

nomisec WRITEUP 1 stars
by Landw-hub · poc
https://github.com/Landw-hub/CVE-2025-50422

The repository describes an information leak vulnerability in Poppler before version 25.04.0, where heap memory containing PDF object streams is not properly cleared when pdftocairo renders a malicious PDF. The issue was acknowledged and fixed by the vendor.

Classification
Writeup 80%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Poppler before 25.04.0
No auth needed
Prerequisites: Local access to the system running Poppler · Ability to render a malicious PDF using pdftocairo
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Scores

CVSS v3 2.9
EPSS 0.0021
EPSS Percentile 10.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-617
Status published
Products (1)
cairographics/Cairo < 1.18.4
Published Aug 04, 2025
Tracked Since Feb 18, 2026