CVE-2025-50420

Medium CVSS: 6.5

An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead to a Denial of Service (DoS).

Vendor

Freedesktop

Product

Poppler

CWE

CWE-674

Yayın Tarihi

2025-08-04 17:15:30

Güncelleme

2025-10-09 17:43:54

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-674 Poppler MEDIUM Freedesktop 2025

Referanslar

http://freedesktop.com http://poppler.com https://github.com/Landw-hub/CVE-2025-50420

Benzer Kayıtlar

High

CVE-2026-35093

A flaw was found in libinput. A local attacker who can place a specially crafted Lua bytecode file in certain system or…

Low

CVE-2026-35094

A flaw was found in libinput. An attacker capable of deploying a Lua plugin file in specific system directories can expl…

Medium

CVE-2025-52886

Poppler is a PDF rendering library. Versions prior to 25.06.0 use `std::atomic_int` for reference counting. Because `std…

Medium

CVE-2025-43903

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting…

Medium

CVE-2025-32365

Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in…

Medium

CVE-2025-32364

A floating-point exception in the PSStack::roll function of Poppler before 25.04.0 can cause an application to crash whe…