CVE-2025-55197
- EPSS 0.06%
- Veröffentlicht 13.08.2025 23:15:27
- Zuletzt bearbeitet 15.08.2025 20:05:20
pypdf is a free and open-source pure-python PDF library. Prior to version 6.0.0, an attacker can craft a PDF which leads to the RAM being exhausted. This requires just reading the file if a series of FlateDecode filters is used on a malicious cross-r...
CVE-2023-46250
- EPSS 0.09%
- Veröffentlicht 31.10.2023 16:15:09
- Zuletzt bearbeitet 21.11.2024 08:28:10
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.16.4 can craft a PDF which leads to an infinite loop. This infinite loop blocks the current process and can utilize a si...
CVE-2023-36807
- EPSS 0.22%
- Veröffentlicht 30.06.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 08:10:38
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.10.5 an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This infinite loop blocks ...
CVE-2023-36810
- EPSS 0.12%
- Veröffentlicht 30.06.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 08:10:38
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses this vulnerability can craft a PDF which leads to unexpected long runtime. This quadratic runtime blocks the cur...
CVE-2023-36464
- EPSS 0.03%
- Veröffentlicht 27.06.2023 22:15:11
- Zuletzt bearbeitet 21.11.2024 08:09:45
pypdf is an open source, pure-python PDF library. In affected versions an attacker may craft a PDF which leads to an infinite loop if `__parse_content_stream` is executed. That is, for example, the case if the user extracted text from such a PDF. Thi...