Vulnerability Details : CVE-2018-18651
An issue was discovered in Xpdf 4.00. catalog->getNumPages() in AcroForm.cc allows attackers to launch a denial of service (hang caused by large loop) via a specific pdf file, as demonstrated by pdftohtml. This is mainly caused by a large number after the /Count field in the file.
Vulnerability category: Denial of service
Products affected by CVE-2018-18651
- cpe:2.3:a:xpdfreader:xpdf:4.00:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-18651
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 25 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-18651
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST | |
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2018-18651
-
The product performs an iteration or loop without sufficiently limiting the number of times that the loop is executed.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-18651
-
https://forum.xpdfreader.com/viewtopic.php?f=3&t=41219&p=41747#p41747
two bugs in pdftohtml - forum.xpdfreader.comExploit;Third Party Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/152005
Xpdf AcroForm.cc denial of service CVE-2018-18651 Vulnerability ReportThird Party Advisory
Jump to