CVE-2026-3308 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

An integer overflow vulnerability in 'pdf-image.c' in Artifex's MuPDF version 1.27.0 allows an attacker to maliciously craft a PDF that can trigger an integer o…
High CVSS: 7.8

CVE-2026-3308

An integer overflow vulnerability in 'pdf-image.c' in Artifex's MuPDF version 1.27.0 allows an attacker to maliciously craft a PDF that can trigger an integer overflow within the 'pdf_load_image_imp' function. This allows a heap out-of-bounds write that could be exploited for arbitrary code execution.
Vendor
-
Product
-
CWE
CWE-190
Yayın Tarihi
2026-03-31 14:16:12
Güncelleme
2026-04-02 19:21:35
Source Identifier
cret@cert.org
KEV Date Added
-

Kategoriler

CWE-190 HIGH 2026

Referanslar

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=a26f0142e7d390d4a82c6e5ae0e312e07cc4ec85 https://github.com/ArtifexSoftware/mupdf https://github.com/ArtifexSoftware/mupdf/commit/a26f0142e7d390d4a82c6e5ae0e312e07cc4ec85 https://www.kb.cert.org/vuls/id/951662