Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
Typedeb
Namespacedebian
Namepoppler
Version20.09.0-3.1+deb11u1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version25.03.0-11.1
Latest_non_vulnerable_version25.03.0-11.1
Affected_by_vulnerabilities
0
url VCID-48d5-zxmm-r3g4
vulnerability_id VCID-48d5-zxmm-r3g4
summary An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead to a Denial of Service (DoS).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-50420
reference_id
reference_type
scores
0
value 0.00051
scoring_system epss
scoring_elements 0.16103
published_at 2026-04-08T12:55:00Z
1
value 0.00051
scoring_system epss
scoring_elements 0.16224
published_at 2026-04-04T12:55:00Z
2
value 0.00051
scoring_system epss
scoring_elements 0.16163
published_at 2026-04-02T12:55:00Z
3
value 0.00051
scoring_system epss
scoring_elements 0.16017
published_at 2026-04-07T12:55:00Z
4
value 0.00056
scoring_system epss
scoring_elements 0.17679
published_at 2026-04-12T12:55:00Z
5
value 0.00056
scoring_system epss
scoring_elements 0.17583
published_at 2026-04-18T12:55:00Z
6
value 0.00056
scoring_system epss
scoring_elements 0.17575
published_at 2026-04-16T12:55:00Z
7
value 0.00056
scoring_system epss
scoring_elements 0.17707
published_at 2026-04-09T12:55:00Z
8
value 0.00056
scoring_system epss
scoring_elements 0.17725
published_at 2026-04-11T12:55:00Z
9
value 0.00056
scoring_system epss
scoring_elements 0.17628
published_at 2026-04-13T12:55:00Z
10
value 0.0006
scoring_system epss
scoring_elements 0.18676
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-50420
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-50420
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-50420
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1110463
reference_id 1110463
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1110463
4
reference_url https://github.com/Landw-hub/CVE-2025-50420
reference_id CVE-2025-50420
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T19:38:23Z/
url https://github.com/Landw-hub/CVE-2025-50420
5
reference_url http://freedesktop.com
reference_id freedesktop.com
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T19:38:23Z/
url http://freedesktop.com
6
reference_url http://poppler.com
reference_id poppler.com
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T19:38:23Z/
url http://poppler.com
7
reference_url https://usn.ubuntu.com/7708-1/
reference_id USN-7708-1
reference_type
scores
url https://usn.ubuntu.com/7708-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2025-50420
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-48d5-zxmm-r3g4
1
url VCID-48ua-ch85-w3cg
vulnerability_id VCID-48ua-ch85-w3cg
summary poppler: Reachable assertion in Object.h
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38349.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38349.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-38349
reference_id
reference_type
scores
0
value 0.0002
scoring_system epss
scoring_elements 0.05403
published_at 2026-04-21T12:55:00Z
1
value 0.00021
scoring_system epss
scoring_elements 0.05714
published_at 2026-04-02T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.05785
published_at 2026-04-12T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.05779
published_at 2026-04-13T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.05743
published_at 2026-04-16T12:55:00Z
5
value 0.00021
scoring_system epss
scoring_elements 0.05755
published_at 2026-04-04T12:55:00Z
6
value 0.00021
scoring_system epss
scoring_elements 0.05751
published_at 2026-04-18T12:55:00Z
7
value 0.00021
scoring_system epss
scoring_elements 0.0579
published_at 2026-04-08T12:55:00Z
8
value 0.00021
scoring_system epss
scoring_elements 0.05815
published_at 2026-04-09T12:55:00Z
9
value 0.00021
scoring_system epss
scoring_elements 0.05794
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-38349
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38349
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38349
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1282
reference_id 1282
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:39:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1282
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2251630
reference_id 2251630
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2251630
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/4564a002bcb6094cc460bc0d5ddff9423fe6dd28
reference_id 4564a002bcb6094cc460bc0d5ddff9423fe6dd28
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:39:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/4564a002bcb6094cc460bc0d5ddff9423fe6dd28
7
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-38349
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-48ua-ch85-w3cg
2
url VCID-4ucr-xaac-7uc7
vulnerability_id VCID-4ucr-xaac-7uc7
summary poppler: Floating-Point Exception in Poppler
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32364.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32364.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32364
reference_id
reference_type
scores
0
value 0.00094
scoring_system epss
scoring_elements 0.26434
published_at 2026-04-02T12:55:00Z
1
value 0.00094
scoring_system epss
scoring_elements 0.26252
published_at 2026-04-07T12:55:00Z
2
value 0.00094
scoring_system epss
scoring_elements 0.26371
published_at 2026-04-09T12:55:00Z
3
value 0.00094
scoring_system epss
scoring_elements 0.2638
published_at 2026-04-11T12:55:00Z
4
value 0.00094
scoring_system epss
scoring_elements 0.26333
published_at 2026-04-12T12:55:00Z
5
value 0.00094
scoring_system epss
scoring_elements 0.26275
published_at 2026-04-13T12:55:00Z
6
value 0.00094
scoring_system epss
scoring_elements 0.26281
published_at 2026-04-16T12:55:00Z
7
value 0.00094
scoring_system epss
scoring_elements 0.26256
published_at 2026-04-18T12:55:00Z
8
value 0.00094
scoring_system epss
scoring_elements 0.26478
published_at 2026-04-04T12:55:00Z
9
value 0.00094
scoring_system epss
scoring_elements 0.26319
published_at 2026-04-08T12:55:00Z
10
value 0.00113
scoring_system epss
scoring_elements 0.29831
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32364
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32364
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32364
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102190
reference_id 1102190
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102190
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1574
reference_id 1574
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T16:06:56Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1574
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2357657
reference_id 2357657
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2357657
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/d87bc726c7cc98f8c26b60ece5f20236e9de1bc3
reference_id d87bc726c7cc98f8c26b60ece5f20236e9de1bc3
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T16:06:56Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/d87bc726c7cc98f8c26b60ece5f20236e9de1bc3
8
reference_url https://usn.ubuntu.com/7426-1/
reference_id USN-7426-1
reference_type
scores
url https://usn.ubuntu.com/7426-1/
9
reference_url https://usn.ubuntu.com/7426-2/
reference_id USN-7426-2
reference_type
scores
url https://usn.ubuntu.com/7426-2/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2025-32364
risk_score 1.8
exploitability 0.5
weighted_severity 3.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4ucr-xaac-7uc7
3
url VCID-72nw-9jgd-4kdw
vulnerability_id VCID-72nw-9jgd-4kdw
summary poppler: abort in main() in pdfunite.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37051.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37051.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-37051
reference_id
reference_type
scores
0
value 0.00044
scoring_system epss
scoring_elements 0.13629
published_at 2026-04-02T12:55:00Z
1
value 0.00044
scoring_system epss
scoring_elements 0.1369
published_at 2026-04-04T12:55:00Z
2
value 0.00044
scoring_system epss
scoring_elements 0.1349
published_at 2026-04-07T12:55:00Z
3
value 0.00044
scoring_system epss
scoring_elements 0.13571
published_at 2026-04-08T12:55:00Z
4
value 0.00044
scoring_system epss
scoring_elements 0.13621
published_at 2026-04-09T12:55:00Z
5
value 0.00044
scoring_system epss
scoring_elements 0.13593
published_at 2026-04-11T12:55:00Z
6
value 0.00044
scoring_system epss
scoring_elements 0.13556
published_at 2026-04-12T12:55:00Z
7
value 0.00044
scoring_system epss
scoring_elements 0.13508
published_at 2026-04-13T12:55:00Z
8
value 0.00044
scoring_system epss
scoring_elements 0.1342
published_at 2026-04-16T12:55:00Z
9
value 0.00044
scoring_system epss
scoring_elements 0.13416
published_at 2026-04-18T12:55:00Z
10
value 0.00044
scoring_system epss
scoring_elements 0.13489
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-37051
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37051
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37051
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234528
reference_id 2234528
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234528
5
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-37051
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-72nw-9jgd-4kdw
4
url VCID-a8zz-dfdm-1uf7
vulnerability_id VCID-a8zz-dfdm-1uf7
summary poppler: Poppler stack overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43718.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43718.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-43718
reference_id
reference_type
scores
0
value 8e-05
scoring_system epss
scoring_elements 0.00727
published_at 2026-04-02T12:55:00Z
1
value 8e-05
scoring_system epss
scoring_elements 0.00755
published_at 2026-04-21T12:55:00Z
2
value 8e-05
scoring_system epss
scoring_elements 0.00719
published_at 2026-04-09T12:55:00Z
3
value 8e-05
scoring_system epss
scoring_elements 0.00716
published_at 2026-04-11T12:55:00Z
4
value 8e-05
scoring_system epss
scoring_elements 0.0071
published_at 2026-04-13T12:55:00Z
5
value 8e-05
scoring_system epss
scoring_elements 0.00708
published_at 2026-04-16T12:55:00Z
6
value 8e-05
scoring_system epss
scoring_elements 0.00713
published_at 2026-04-18T12:55:00Z
7
value 8e-05
scoring_system epss
scoring_elements 0.00724
published_at 2026-04-04T12:55:00Z
8
value 8e-05
scoring_system epss
scoring_elements 0.00729
published_at 2026-04-07T12:55:00Z
9
value 8e-05
scoring_system epss
scoring_elements 0.00728
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-43718
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43718
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43718
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117046
reference_id 1117046
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117046
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2400893
reference_id 2400893
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2400893
6
reference_url https://github.com/ShadowByte1/CVE-Reports/blob/main/CVE-2025-43718.md
reference_id CVE-2025-43718.md
reference_type
scores
0
value 2.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-01T19:15:35Z/
url https://github.com/ShadowByte1/CVE-Reports/blob/main/CVE-2025-43718.md
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f54b815672117c250420787c8c006de98e8c7408
reference_id f54b815672117c250420787c8c006de98e8c7408
reference_type
scores
0
value 2.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-01T19:15:35Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f54b815672117c250420787c8c006de98e8c7408
8
reference_url https://access.redhat.com/errata/RHSA-2026:7364
reference_id RHSA-2026:7364
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7364
9
reference_url https://usn.ubuntu.com/7803-1/
reference_id USN-7803-1
reference_type
scores
url https://usn.ubuntu.com/7803-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-11.1
purl pkg:deb/debian/poppler@25.03.0-11.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-11.1
aliases CVE-2025-43718
risk_score 1.8
exploitability 0.5
weighted_severity 3.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a8zz-dfdm-1uf7
5
url VCID-anb3-1s96-wbaq
vulnerability_id VCID-anb3-1s96-wbaq
summary poppler: SignatureValue not checked within SignerInfo
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43903.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43903.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-43903
reference_id
reference_type
scores
0
value 0.00042
scoring_system epss
scoring_elements 0.13033
published_at 2026-04-02T12:55:00Z
1
value 0.00042
scoring_system epss
scoring_elements 0.12901
published_at 2026-04-21T12:55:00Z
2
value 0.00042
scoring_system epss
scoring_elements 0.12894
published_at 2026-04-13T12:55:00Z
3
value 0.00042
scoring_system epss
scoring_elements 0.12797
published_at 2026-04-16T12:55:00Z
4
value 0.00042
scoring_system epss
scoring_elements 0.128
published_at 2026-04-18T12:55:00Z
5
value 0.00042
scoring_system epss
scoring_elements 0.13085
published_at 2026-04-04T12:55:00Z
6
value 0.00042
scoring_system epss
scoring_elements 0.12885
published_at 2026-04-07T12:55:00Z
7
value 0.00042
scoring_system epss
scoring_elements 0.12963
published_at 2026-04-08T12:55:00Z
8
value 0.00042
scoring_system epss
scoring_elements 0.13014
published_at 2026-04-09T12:55:00Z
9
value 0.00042
scoring_system epss
scoring_elements 0.12974
published_at 2026-04-11T12:55:00Z
10
value 0.00042
scoring_system epss
scoring_elements 0.12938
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-43903
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43903
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43903
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103545
reference_id 1103545
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103545
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2361067
reference_id 2361067
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2361067
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f1b9c830f145a0042e853d6462b2f9ca4016c669
reference_id f1b9c830f145a0042e853d6462b2f9ca4016c669
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:50:50Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f1b9c830f145a0042e853d6462b2f9ca4016c669
7
reference_url https://usn.ubuntu.com/7471-1/
reference_id USN-7471-1
reference_type
scores
url https://usn.ubuntu.com/7471-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2025-43903
risk_score 1.9
exploitability 0.5
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-anb3-1s96-wbaq
6
url VCID-bc96-6vy6-ryfz
vulnerability_id VCID-bc96-6vy6-ryfz
summary poppler: Stack-Overflow in `FoFiType1C::cvtGlyph`
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36023.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36023.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-36023
reference_id
reference_type
scores
0
value 0.00068
scoring_system epss
scoring_elements 0.20984
published_at 2026-04-01T12:55:00Z
1
value 0.00068
scoring_system epss
scoring_elements 0.21138
published_at 2026-04-02T12:55:00Z
2
value 0.00068
scoring_system epss
scoring_elements 0.20935
published_at 2026-04-21T12:55:00Z
3
value 0.00068
scoring_system epss
scoring_elements 0.20968
published_at 2026-04-13T12:55:00Z
4
value 0.00068
scoring_system epss
scoring_elements 0.20956
published_at 2026-04-16T12:55:00Z
5
value 0.00068
scoring_system epss
scoring_elements 0.20955
published_at 2026-04-18T12:55:00Z
6
value 0.00068
scoring_system epss
scoring_elements 0.21193
published_at 2026-04-04T12:55:00Z
7
value 0.00068
scoring_system epss
scoring_elements 0.20906
published_at 2026-04-07T12:55:00Z
8
value 0.00068
scoring_system epss
scoring_elements 0.20987
published_at 2026-04-08T12:55:00Z
9
value 0.00068
scoring_system epss
scoring_elements 0.21048
published_at 2026-04-09T12:55:00Z
10
value 0.00068
scoring_system epss
scoring_elements 0.21064
published_at 2026-04-11T12:55:00Z
11
value 0.00068
scoring_system epss
scoring_elements 0.2102
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-36023
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36023
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36023
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1013
reference_id 1013
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:59:31Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1013
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2231510
reference_id 2231510
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2231510
6
reference_url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
reference_id msg00017.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:59:31Z/
url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
7
reference_url https://usn.ubuntu.com/6299-1/
reference_id USN-6299-1
reference_type
scores
url https://usn.ubuntu.com/6299-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2020-36023
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bc96-6vy6-ryfz
7
url VCID-c4wz-u632-eyeh
vulnerability_id VCID-c4wz-u632-eyeh
summary poppler: abort in PDFDoc::savePageAs in PDFDoc.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37050.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37050.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-37050
reference_id
reference_type
scores
0
value 0.00064
scoring_system epss
scoring_elements 0.19984
published_at 2026-04-02T12:55:00Z
1
value 0.00064
scoring_system epss
scoring_elements 0.19799
published_at 2026-04-21T12:55:00Z
2
value 0.00064
scoring_system epss
scoring_elements 0.19849
published_at 2026-04-08T12:55:00Z
3
value 0.00064
scoring_system epss
scoring_elements 0.19903
published_at 2026-04-09T12:55:00Z
4
value 0.00064
scoring_system epss
scoring_elements 0.19912
published_at 2026-04-11T12:55:00Z
5
value 0.00064
scoring_system epss
scoring_elements 0.19869
published_at 2026-04-12T12:55:00Z
6
value 0.00064
scoring_system epss
scoring_elements 0.19811
published_at 2026-04-13T12:55:00Z
7
value 0.00064
scoring_system epss
scoring_elements 0.19783
published_at 2026-04-16T12:55:00Z
8
value 0.00064
scoring_system epss
scoring_elements 0.19786
published_at 2026-04-18T12:55:00Z
9
value 0.00064
scoring_system epss
scoring_elements 0.20043
published_at 2026-04-04T12:55:00Z
10
value 0.00064
scoring_system epss
scoring_elements 0.19769
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-37050
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37050
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37050
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1274
reference_id 1274
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T14:19:32Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1274
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234527
reference_id 2234527
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234527
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/dcd5bd8238ea448addd102ff045badd0aca1b990
reference_id dcd5bd8238ea448addd102ff045badd0aca1b990
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T14:19:32Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/dcd5bd8238ea448addd102ff045badd0aca1b990
7
reference_url https://lists.debian.org/debian-lts-announce/2023/10/msg00022.html
reference_id msg00022.html
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T14:19:32Z/
url https://lists.debian.org/debian-lts-announce/2023/10/msg00022.html
8
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-37050
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c4wz-u632-eyeh
8
url VCID-d5fj-5prg-97f4
vulnerability_id VCID-d5fj-5prg-97f4
summary poppler: Out-of-Bounds Read in Poppler
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32365.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32365.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32365
reference_id
reference_type
scores
0
value 0.00079
scoring_system epss
scoring_elements 0.23524
published_at 2026-04-02T12:55:00Z
1
value 0.00079
scoring_system epss
scoring_elements 0.23385
published_at 2026-04-21T12:55:00Z
2
value 0.00079
scoring_system epss
scoring_elements 0.23484
published_at 2026-04-11T12:55:00Z
3
value 0.00079
scoring_system epss
scoring_elements 0.23446
published_at 2026-04-12T12:55:00Z
4
value 0.00079
scoring_system epss
scoring_elements 0.23391
published_at 2026-04-13T12:55:00Z
5
value 0.00079
scoring_system epss
scoring_elements 0.23408
published_at 2026-04-16T12:55:00Z
6
value 0.00079
scoring_system epss
scoring_elements 0.23403
published_at 2026-04-18T12:55:00Z
7
value 0.00079
scoring_system epss
scoring_elements 0.23561
published_at 2026-04-04T12:55:00Z
8
value 0.00079
scoring_system epss
scoring_elements 0.23343
published_at 2026-04-07T12:55:00Z
9
value 0.00079
scoring_system epss
scoring_elements 0.23416
published_at 2026-04-08T12:55:00Z
10
value 0.00079
scoring_system epss
scoring_elements 0.23466
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32365
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32365
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32365
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102191
reference_id 1102191
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102191
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1577
reference_id 1577
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T14:43:55Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1577
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1792
reference_id 1792
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T14:43:55Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1792
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2357656
reference_id 2357656
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2357656
8
reference_url https://access.redhat.com/errata/RHSA-2026:0126
reference_id RHSA-2026:0126
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0126
9
reference_url https://access.redhat.com/errata/RHSA-2026:0128
reference_id RHSA-2026:0128
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0128
10
reference_url https://access.redhat.com/errata/RHSA-2026:0130
reference_id RHSA-2026:0130
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0130
11
reference_url https://access.redhat.com/errata/RHSA-2026:0772
reference_id RHSA-2026:0772
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0772
12
reference_url https://access.redhat.com/errata/RHSA-2026:0773
reference_id RHSA-2026:0773
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0773
13
reference_url https://access.redhat.com/errata/RHSA-2026:0774
reference_id RHSA-2026:0774
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0774
14
reference_url https://access.redhat.com/errata/RHSA-2026:0795
reference_id RHSA-2026:0795
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0795
15
reference_url https://access.redhat.com/errata/RHSA-2026:0796
reference_id RHSA-2026:0796
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0796
16
reference_url https://access.redhat.com/errata/RHSA-2026:0797
reference_id RHSA-2026:0797
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0797
17
reference_url https://access.redhat.com/errata/RHSA-2026:0799
reference_id RHSA-2026:0799
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0799
18
reference_url https://access.redhat.com/errata/RHSA-2026:1090
reference_id RHSA-2026:1090
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1090
19
reference_url https://access.redhat.com/errata/RHSA-2026:1091
reference_id RHSA-2026:1091
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1091
20
reference_url https://usn.ubuntu.com/7426-1/
reference_id USN-7426-1
reference_type
scores
url https://usn.ubuntu.com/7426-1/
21
reference_url https://usn.ubuntu.com/7426-2/
reference_id USN-7426-2
reference_type
scores
url https://usn.ubuntu.com/7426-2/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2025-32365
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d5fj-5prg-97f4
9
url VCID-n1sx-y7xc-kqfb
vulnerability_id VCID-n1sx-y7xc-kqfb
summary poppler: NULL pointer dereference in `FoFiType1C::convertToType1`
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36024.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36024.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-36024
reference_id
reference_type
scores
0
value 0.00095
scoring_system epss
scoring_elements 0.26431
published_at 2026-04-11T12:55:00Z
1
value 0.00095
scoring_system epss
scoring_elements 0.26481
published_at 2026-04-02T12:55:00Z
2
value 0.00095
scoring_system epss
scoring_elements 0.26272
published_at 2026-04-21T12:55:00Z
3
value 0.00095
scoring_system epss
scoring_elements 0.26327
published_at 2026-04-13T12:55:00Z
4
value 0.00095
scoring_system epss
scoring_elements 0.26335
published_at 2026-04-16T12:55:00Z
5
value 0.00095
scoring_system epss
scoring_elements 0.26308
published_at 2026-04-18T12:55:00Z
6
value 0.00095
scoring_system epss
scoring_elements 0.26524
published_at 2026-04-04T12:55:00Z
7
value 0.00095
scoring_system epss
scoring_elements 0.26305
published_at 2026-04-07T12:55:00Z
8
value 0.00095
scoring_system epss
scoring_elements 0.26373
published_at 2026-04-08T12:55:00Z
9
value 0.00095
scoring_system epss
scoring_elements 0.26423
published_at 2026-04-09T12:55:00Z
10
value 0.00095
scoring_system epss
scoring_elements 0.26385
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-36024
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36024
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36024
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1016
reference_id 1016
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:56:32Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1016
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2231520
reference_id 2231520
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2231520
6
reference_url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
reference_id msg00017.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:56:32Z/
url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
7
reference_url https://access.redhat.com/errata/RHSA-2024:2979
reference_id RHSA-2024:2979
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2979
8
reference_url https://usn.ubuntu.com/6299-1/
reference_id USN-6299-1
reference_type
scores
url https://usn.ubuntu.com/6299-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2020-36024
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n1sx-y7xc-kqfb
10
url VCID-nqqu-29qr-wfec
vulnerability_id VCID-nqqu-29qr-wfec
summary poppler: reachable assertion due to a failure in markObject()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37052.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37052.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-37052
reference_id
reference_type
scores
0
value 0.00027
scoring_system epss
scoring_elements 0.07427
published_at 2026-04-02T12:55:00Z
1
value 0.00027
scoring_system epss
scoring_elements 0.07547
published_at 2026-04-21T12:55:00Z
2
value 0.00027
scoring_system epss
scoring_elements 0.07507
published_at 2026-04-13T12:55:00Z
3
value 0.00027
scoring_system epss
scoring_elements 0.07429
published_at 2026-04-16T12:55:00Z
4
value 0.00027
scoring_system epss
scoring_elements 0.07418
published_at 2026-04-18T12:55:00Z
5
value 0.00027
scoring_system epss
scoring_elements 0.07469
published_at 2026-04-04T12:55:00Z
6
value 0.00027
scoring_system epss
scoring_elements 0.07451
published_at 2026-04-07T12:55:00Z
7
value 0.00027
scoring_system epss
scoring_elements 0.07509
published_at 2026-04-08T12:55:00Z
8
value 0.00027
scoring_system epss
scoring_elements 0.07532
published_at 2026-04-09T12:55:00Z
9
value 0.00027
scoring_system epss
scoring_elements 0.07534
published_at 2026-04-11T12:55:00Z
10
value 0.00027
scoring_system epss
scoring_elements 0.0752
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-37052
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37052
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37052
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1278
reference_id 1278
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:06:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1278
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234530
reference_id 2234530
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234530
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/8677500399fc2548fa816b619580c2c07915a98c
reference_id 8677500399fc2548fa816b619580c2c07915a98c
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:06:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/8677500399fc2548fa816b619580c2c07915a98c
7
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-37052
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nqqu-29qr-wfec
11
url VCID-tfe8-bq62-3ke4
vulnerability_id VCID-tfe8-bq62-3ke4
summary Poppler: out-of-bounds read
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56378.json
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56378.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-56378
reference_id
reference_type
scores
0
value 0.00305
scoring_system epss
scoring_elements 0.53765
published_at 2026-04-21T12:55:00Z
1
value 0.00305
scoring_system epss
scoring_elements 0.53728
published_at 2026-04-08T12:55:00Z
2
value 0.00305
scoring_system epss
scoring_elements 0.53725
published_at 2026-04-09T12:55:00Z
3
value 0.00305
scoring_system epss
scoring_elements 0.53774
published_at 2026-04-11T12:55:00Z
4
value 0.00305
scoring_system epss
scoring_elements 0.53757
published_at 2026-04-12T12:55:00Z
5
value 0.00305
scoring_system epss
scoring_elements 0.53741
published_at 2026-04-13T12:55:00Z
6
value 0.00305
scoring_system epss
scoring_elements 0.53779
published_at 2026-04-16T12:55:00Z
7
value 0.00305
scoring_system epss
scoring_elements 0.53783
published_at 2026-04-18T12:55:00Z
8
value 0.00305
scoring_system epss
scoring_elements 0.53679
published_at 2026-04-02T12:55:00Z
9
value 0.00305
scoring_system epss
scoring_elements 0.53707
published_at 2026-04-04T12:55:00Z
10
value 0.00305
scoring_system epss
scoring_elements 0.53675
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-56378
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56378
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56378
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091322
reference_id 1091322
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091322
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1553
reference_id 1553
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-26T19:27:24Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1553
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2333794
reference_id 2333794
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2333794
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ade9b5ebed44b0c15522c27669ef6cdf93eff84e
reference_id ade9b5ebed44b0c15522c27669ef6cdf93eff84e
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-26T19:27:24Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ade9b5ebed44b0c15522c27669ef6cdf93eff84e
8
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/blob/30eada0d2bceb42c2d2a87361339063e0b9bea50/CMakeLists.txt#L621
reference_id CMakeLists.txt#L621
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-26T19:27:24Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/blob/30eada0d2bceb42c2d2a87361339063e0b9bea50/CMakeLists.txt#L621
9
reference_url https://usn.ubuntu.com/7213-1/
reference_id USN-7213-1
reference_type
scores
url https://usn.ubuntu.com/7213-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2024-56378
risk_score 2.0
exploitability 0.5
weighted_severity 4.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tfe8-bq62-3ke4
12
url VCID-ygrf-gq35-fkfd
vulnerability_id VCID-ygrf-gq35-fkfd
summary Multiple vulnerabilities have been discovered in Poppler, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52886.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52886.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-52886
reference_id
reference_type
scores
0
value 0.00091
scoring_system epss
scoring_elements 0.25732
published_at 2026-04-02T12:55:00Z
1
value 0.00091
scoring_system epss
scoring_elements 0.25579
published_at 2026-04-16T12:55:00Z
2
value 0.00091
scoring_system epss
scoring_elements 0.25577
published_at 2026-04-13T12:55:00Z
3
value 0.00091
scoring_system epss
scoring_elements 0.25634
published_at 2026-04-12T12:55:00Z
4
value 0.00091
scoring_system epss
scoring_elements 0.25675
published_at 2026-04-11T12:55:00Z
5
value 0.00091
scoring_system epss
scoring_elements 0.25663
published_at 2026-04-09T12:55:00Z
6
value 0.00091
scoring_system epss
scoring_elements 0.25616
published_at 2026-04-08T12:55:00Z
7
value 0.00091
scoring_system epss
scoring_elements 0.25774
published_at 2026-04-04T12:55:00Z
8
value 0.00091
scoring_system epss
scoring_elements 0.25543
published_at 2026-04-07T12:55:00Z
9
value 0.00098
scoring_system epss
scoring_elements 0.26937
published_at 2026-04-21T12:55:00Z
10
value 0.00098
scoring_system epss
scoring_elements 0.26973
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-52886
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52886
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52886
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203
reference_id 04bd91684ed41d67ae0f10cde0660e4ed74ac203
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108784
reference_id 1108784
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108784
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581
reference_id 1581
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828
reference_id 1828
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2375930
reference_id 2375930
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2375930
9
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5
reference_id ac36affcc8486de38e8905a8d6547a3464ff46e5
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5
10
reference_url https://securitylab.github.com/advisories/GHSL-2025-054_poppler/
reference_id GHSL-2025-054_poppler
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://securitylab.github.com/advisories/GHSL-2025-054_poppler/
11
reference_url https://security.gentoo.org/glsa/202509-01
reference_id GLSA-202509-01
reference_type
scores
url https://security.gentoo.org/glsa/202509-01
12
reference_url https://usn.ubuntu.com/7675-1/
reference_id USN-7675-1
reference_type
scores
url https://usn.ubuntu.com/7675-1/
13
reference_url https://usn.ubuntu.com/7687-1/
reference_id USN-7687-1
reference_type
scores
url https://usn.ubuntu.com/7687-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2025-52886
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ygrf-gq35-fkfd
13
url VCID-yy6j-1h5z-wbgp
vulnerability_id VCID-yy6j-1h5z-wbgp
summary poppler: Use-After-Free in StructTreeRoot class
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52885.json
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52885.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-52885
reference_id
reference_type
scores
0
value 0.00025
scoring_system epss
scoring_elements 0.0662
published_at 2026-04-02T12:55:00Z
1
value 0.00025
scoring_system epss
scoring_elements 0.06796
published_at 2026-04-21T12:55:00Z
2
value 0.00025
scoring_system epss
scoring_elements 0.06694
published_at 2026-04-08T12:55:00Z
3
value 0.00025
scoring_system epss
scoring_elements 0.06728
published_at 2026-04-09T12:55:00Z
4
value 0.00025
scoring_system epss
scoring_elements 0.06727
published_at 2026-04-11T12:55:00Z
5
value 0.00025
scoring_system epss
scoring_elements 0.0672
published_at 2026-04-12T12:55:00Z
6
value 0.00025
scoring_system epss
scoring_elements 0.06713
published_at 2026-04-13T12:55:00Z
7
value 0.00025
scoring_system epss
scoring_elements 0.06648
published_at 2026-04-16T12:55:00Z
8
value 0.00025
scoring_system epss
scoring_elements 0.06639
published_at 2026-04-18T12:55:00Z
9
value 0.00025
scoring_system epss
scoring_elements 0.06664
published_at 2026-04-04T12:55:00Z
10
value 0.00025
scoring_system epss
scoring_elements 0.06644
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-52885
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52885
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52885
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117853
reference_id 1117853
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117853
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884
reference_id 1884
reference_type
scores
0
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-14T14:59:44Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884#note_3114334
reference_id 1884#note_3114334
reference_type
scores
0
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-14T14:59:44Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884#note_3114334
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2403224
reference_id 2403224
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2403224
8
reference_url https://securitylab.github.com/advisories/GHSL-2025-042_poppler/
reference_id GHSL-2025-042_poppler
reference_type
scores
0
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-14T14:59:44Z/
url https://securitylab.github.com/advisories/GHSL-2025-042_poppler/
9
reference_url https://access.redhat.com/errata/RHSA-2026:7364
reference_id RHSA-2026:7364
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7364
10
reference_url https://usn.ubuntu.com/7858-1/
reference_id USN-7858-1
reference_type
scores
url https://usn.ubuntu.com/7858-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-11.1
purl pkg:deb/debian/poppler@25.03.0-11.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-11.1
aliases CVE-2025-52885
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yy6j-1h5z-wbgp
14
url VCID-yyxy-juya-a3f1
vulnerability_id VCID-yyxy-juya-a3f1
summary poppler: pdfinfo: crash in broken documents when using -dests parameter
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6239.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6239.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-6239
reference_id
reference_type
scores
0
value 0.00127
scoring_system epss
scoring_elements 0.32049
published_at 2026-04-21T12:55:00Z
1
value 0.00127
scoring_system epss
scoring_elements 0.32065
published_at 2026-04-13T12:55:00Z
2
value 0.00127
scoring_system epss
scoring_elements 0.32099
published_at 2026-04-16T12:55:00Z
3
value 0.00127
scoring_system epss
scoring_elements 0.32076
published_at 2026-04-18T12:55:00Z
4
value 0.00127
scoring_system epss
scoring_elements 0.32188
published_at 2026-04-02T12:55:00Z
5
value 0.00127
scoring_system epss
scoring_elements 0.32226
published_at 2026-04-04T12:55:00Z
6
value 0.00127
scoring_system epss
scoring_elements 0.32051
published_at 2026-04-07T12:55:00Z
7
value 0.00127
scoring_system epss
scoring_elements 0.32102
published_at 2026-04-08T12:55:00Z
8
value 0.00127
scoring_system epss
scoring_elements 0.32131
published_at 2026-04-09T12:55:00Z
9
value 0.00127
scoring_system epss
scoring_elements 0.32135
published_at 2026-04-11T12:55:00Z
10
value 0.00127
scoring_system epss
scoring_elements 0.32097
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-6239
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6239
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6239
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1074146
reference_id 1074146
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1074146
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2293594
reference_id 2293594
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2293594
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb
reference_id cpe:/a:redhat:enterprise_linux:8::crb
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb
reference_id cpe:/a:redhat:enterprise_linux:9::crb
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10
reference_id cpe:/o:redhat:enterprise_linux:10
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
15
reference_url https://access.redhat.com/security/cve/CVE-2024-6239
reference_id CVE-2024-6239
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://access.redhat.com/security/cve/CVE-2024-6239
16
reference_url https://access.redhat.com/errata/RHSA-2024:5305
reference_id RHSA-2024:5305
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://access.redhat.com/errata/RHSA-2024:5305
17
reference_url https://access.redhat.com/errata/RHSA-2024:9167
reference_id RHSA-2024:9167
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://access.redhat.com/errata/RHSA-2024:9167
18
reference_url https://usn.ubuntu.com/6915-1/
reference_id USN-6915-1
reference_type
scores
url https://usn.ubuntu.com/6915-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2024-6239
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yyxy-juya-a3f1
Fixing_vulnerabilities
0
url VCID-2ck3-hjtt-hbax
vulnerability_id VCID-2ck3-hjtt-hbax
summary poppler: pdftohtml: access to uninitialized pointer could lead to DoS
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27778.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27778.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-27778
reference_id
reference_type
scores
0
value 0.00283
scoring_system epss
scoring_elements 0.51622
published_at 2026-04-01T12:55:00Z
1
value 0.00283
scoring_system epss
scoring_elements 0.51673
published_at 2026-04-02T12:55:00Z
2
value 0.00283
scoring_system epss
scoring_elements 0.51698
published_at 2026-04-04T12:55:00Z
3
value 0.00283
scoring_system epss
scoring_elements 0.51658
published_at 2026-04-07T12:55:00Z
4
value 0.00283
scoring_system epss
scoring_elements 0.51712
published_at 2026-04-08T12:55:00Z
5
value 0.00283
scoring_system epss
scoring_elements 0.51708
published_at 2026-04-09T12:55:00Z
6
value 0.00283
scoring_system epss
scoring_elements 0.51758
published_at 2026-04-11T12:55:00Z
7
value 0.00283
scoring_system epss
scoring_elements 0.51736
published_at 2026-04-12T12:55:00Z
8
value 0.00283
scoring_system epss
scoring_elements 0.51719
published_at 2026-04-13T12:55:00Z
9
value 0.00283
scoring_system epss
scoring_elements 0.5176
published_at 2026-04-16T12:55:00Z
10
value 0.00283
scoring_system epss
scoring_elements 0.51767
published_at 2026-04-18T12:55:00Z
11
value 0.00283
scoring_system epss
scoring_elements 0.51747
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-27778
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27778
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27778
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1900712
reference_id 1900712
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1900712
5
reference_url https://access.redhat.com/errata/RHSA-2021:1881
reference_id RHSA-2021:1881
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1881
6
reference_url https://usn.ubuntu.com/4646-1/
reference_id USN-4646-1
reference_type
scores
url https://usn.ubuntu.com/4646-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2020-27778
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2ck3-hjtt-hbax
1
url VCID-5py7-z1gg-9fet
vulnerability_id VCID-5py7-z1gg-9fet
summary poppler: divide-by-zero in function SplashOutputDev::tilingPatternFill in SplashOutputDev.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14494.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14494.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-14494
reference_id
reference_type
scores
0
value 0.01969
scoring_system epss
scoring_elements 0.83467
published_at 2026-04-01T12:55:00Z
1
value 0.01969
scoring_system epss
scoring_elements 0.8348
published_at 2026-04-02T12:55:00Z
2
value 0.01969
scoring_system epss
scoring_elements 0.83494
published_at 2026-04-04T12:55:00Z
3
value 0.01969
scoring_system epss
scoring_elements 0.83493
published_at 2026-04-07T12:55:00Z
4
value 0.01969
scoring_system epss
scoring_elements 0.83518
published_at 2026-04-08T12:55:00Z
5
value 0.01969
scoring_system epss
scoring_elements 0.83527
published_at 2026-04-09T12:55:00Z
6
value 0.01969
scoring_system epss
scoring_elements 0.83542
published_at 2026-04-11T12:55:00Z
7
value 0.01969
scoring_system epss
scoring_elements 0.83536
published_at 2026-04-12T12:55:00Z
8
value 0.01969
scoring_system epss
scoring_elements 0.83532
published_at 2026-04-13T12:55:00Z
9
value 0.01969
scoring_system epss
scoring_elements 0.83566
published_at 2026-04-16T12:55:00Z
10
value 0.01969
scoring_system epss
scoring_elements 0.83567
published_at 2026-04-18T12:55:00Z
11
value 0.01969
scoring_system epss
scoring_elements 0.83568
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-14494
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14494
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14494
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1797453
reference_id 1797453
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1797453
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933812
reference_id 933812
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933812
6
reference_url https://access.redhat.com/errata/RHSA-2020:3977
reference_id RHSA-2020:3977
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:3977
7
reference_url https://access.redhat.com/errata/RHSA-2020:4643
reference_id RHSA-2020:4643
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:4643
8
reference_url https://usn.ubuntu.com/4091-1/
reference_id USN-4091-1
reference_type
scores
url https://usn.ubuntu.com/4091-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2019-14494
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5py7-z1gg-9fet
2
url VCID-8t2a-b56v-tqcs
vulnerability_id VCID-8t2a-b56v-tqcs
summary poppler: stack consumption in function Dict::find() in Dict.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9903.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9903.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-9903
reference_id
reference_type
scores
0
value 0.00732
scoring_system epss
scoring_elements 0.72654
published_at 2026-04-01T12:55:00Z
1
value 0.00732
scoring_system epss
scoring_elements 0.72751
published_at 2026-04-21T12:55:00Z
2
value 0.00732
scoring_system epss
scoring_elements 0.72706
published_at 2026-04-13T12:55:00Z
3
value 0.00732
scoring_system epss
scoring_elements 0.72748
published_at 2026-04-16T12:55:00Z
4
value 0.00732
scoring_system epss
scoring_elements 0.72759
published_at 2026-04-18T12:55:00Z
5
value 0.00732
scoring_system epss
scoring_elements 0.72662
published_at 2026-04-02T12:55:00Z
6
value 0.00732
scoring_system epss
scoring_elements 0.72679
published_at 2026-04-04T12:55:00Z
7
value 0.00732
scoring_system epss
scoring_elements 0.72657
published_at 2026-04-07T12:55:00Z
8
value 0.00732
scoring_system epss
scoring_elements 0.72696
published_at 2026-04-08T12:55:00Z
9
value 0.00732
scoring_system epss
scoring_elements 0.72709
published_at 2026-04-09T12:55:00Z
10
value 0.00732
scoring_system epss
scoring_elements 0.72733
published_at 2026-04-11T12:55:00Z
11
value 0.00732
scoring_system epss
scoring_elements 0.72716
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-9903
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9903
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9903
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/issues/741
reference_id
reference_type
scores
url https://gitlab.freedesktop.org/poppler/poppler/issues/741
5
reference_url https://lists.debian.org/debian-lts-announce/2022/09/msg00030.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2022/09/msg00030.html
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JQ6RABASMSIMMWMDZTP6ZWUWZPTBSVB5/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JQ6RABASMSIMMWMDZTP6ZWUWZPTBSVB5/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XGYLZZ4DZUDBQEGCNDWSZPSFNNZJF4S6/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XGYLZZ4DZUDBQEGCNDWSZPSFNNZJF4S6/
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWWVIYFXM74KJFIDHP4W67HR4FRF2LDE/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWWVIYFXM74KJFIDHP4W67HR4FRF2LDE/
9
reference_url https://research.loginsoft.com/bugs/stack-based-buffer-overflows-in-dictfind-poppler-0-74-0/
reference_id
reference_type
scores
url https://research.loginsoft.com/bugs/stack-based-buffer-overflows-in-dictfind-poppler-0-74-0/
10
reference_url http://www.securityfocus.com/bid/107560
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/107560
11
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1691724
reference_id 1691724
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1691724
12
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925264
reference_id 925264
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925264
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
23
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-9903
reference_id CVE-2019-9903
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2019-9903
34
reference_url https://access.redhat.com/errata/RHSA-2019:2713
reference_id RHSA-2019:2713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2713
35
reference_url https://usn.ubuntu.com/4042-1/
reference_id USN-4042-1
reference_type
scores
url https://usn.ubuntu.com/4042-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2019-9903
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8t2a-b56v-tqcs
3
url VCID-96jm-1vhy-eyfd
vulnerability_id VCID-96jm-1vhy-eyfd
summary poppler: infinite recursion in function FontInfoScanner::scanFonts in FontInfo.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11026.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-11026.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-11026
reference_id
reference_type
scores
0
value 0.00514
scoring_system epss
scoring_elements 0.66509
published_at 2026-04-01T12:55:00Z
1
value 0.00514
scoring_system epss
scoring_elements 0.66615
published_at 2026-04-21T12:55:00Z
2
value 0.00514
scoring_system epss
scoring_elements 0.6658
published_at 2026-04-13T12:55:00Z
3
value 0.00514
scoring_system epss
scoring_elements 0.66616
published_at 2026-04-16T12:55:00Z
4
value 0.00514
scoring_system epss
scoring_elements 0.66631
published_at 2026-04-18T12:55:00Z
5
value 0.00514
scoring_system epss
scoring_elements 0.66549
published_at 2026-04-02T12:55:00Z
6
value 0.00514
scoring_system epss
scoring_elements 0.66574
published_at 2026-04-04T12:55:00Z
7
value 0.00514
scoring_system epss
scoring_elements 0.66546
published_at 2026-04-07T12:55:00Z
8
value 0.00514
scoring_system epss
scoring_elements 0.66593
published_at 2026-04-08T12:55:00Z
9
value 0.00514
scoring_system epss
scoring_elements 0.66607
published_at 2026-04-09T12:55:00Z
10
value 0.00514
scoring_system epss
scoring_elements 0.66626
published_at 2026-04-11T12:55:00Z
11
value 0.00514
scoring_system epss
scoring_elements 0.66614
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-11026
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11026
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11026
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/issues/752
reference_id
reference_type
scores
url https://gitlab.freedesktop.org/poppler/poppler/issues/752
5
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T5JWQE2WP4W4F2FEYPYJQBPQIOG75MVH/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T5JWQE2WP4W4F2FEYPYJQBPQIOG75MVH/
6
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XGYLZZ4DZUDBQEGCNDWSZPSFNNZJF4S6/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XGYLZZ4DZUDBQEGCNDWSZPSFNNZJF4S6/
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWWVIYFXM74KJFIDHP4W67HR4FRF2LDE/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWWVIYFXM74KJFIDHP4W67HR4FRF2LDE/
8
reference_url https://research.loginsoft.com/bugs/1508/
reference_id
reference_type
scores
url https://research.loginsoft.com/bugs/1508/
9
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1699862
reference_id 1699862
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1699862
10
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=926721
reference_id 926721
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=926721
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.75.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:freedesktop:poppler:0.75.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.75.0:*:*:*:*:*:*:*
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:28:*:*:*:*:*:*:*
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-11026
reference_id CVE-2019-11026
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2019-11026
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2019-11026
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96jm-1vhy-eyfd
4
url VCID-crcj-9bh9-7kb7
vulnerability_id VCID-crcj-9bh9-7kb7
summary poppler: integer overflow in JPXStream::init function leading to memory consumption
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9959.json
reference_id
reference_type
scores
0
value 6.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9959.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-9959
reference_id
reference_type
scores
0
value 0.01488
scoring_system epss
scoring_elements 0.80977
published_at 2026-04-01T12:55:00Z
1
value 0.01488
scoring_system epss
scoring_elements 0.80986
published_at 2026-04-02T12:55:00Z
2
value 0.01488
scoring_system epss
scoring_elements 0.81009
published_at 2026-04-04T12:55:00Z
3
value 0.01488
scoring_system epss
scoring_elements 0.81008
published_at 2026-04-07T12:55:00Z
4
value 0.01488
scoring_system epss
scoring_elements 0.81036
published_at 2026-04-08T12:55:00Z
5
value 0.01488
scoring_system epss
scoring_elements 0.81043
published_at 2026-04-09T12:55:00Z
6
value 0.01488
scoring_system epss
scoring_elements 0.8106
published_at 2026-04-11T12:55:00Z
7
value 0.01488
scoring_system epss
scoring_elements 0.81047
published_at 2026-04-12T12:55:00Z
8
value 0.01488
scoring_system epss
scoring_elements 0.81039
published_at 2026-04-13T12:55:00Z
9
value 0.01488
scoring_system epss
scoring_elements 0.81077
published_at 2026-04-16T12:55:00Z
10
value 0.01488
scoring_system epss
scoring_elements 0.81078
published_at 2026-04-18T12:55:00Z
11
value 0.01488
scoring_system epss
scoring_elements 0.81075
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-9959
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9959
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9959
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1732340
reference_id 1732340
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1732340
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941776
reference_id 941776
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941776
6
reference_url https://access.redhat.com/errata/RHSA-2019:2713
reference_id RHSA-2019:2713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2713
7
reference_url https://access.redhat.com/errata/RHSA-2020:1074
reference_id RHSA-2020:1074
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1074
8
reference_url https://usn.ubuntu.com/4646-1/
reference_id USN-4646-1
reference_type
scores
url https://usn.ubuntu.com/4646-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2019-9959
risk_score 2.8
exploitability 0.5
weighted_severity 5.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-crcj-9bh9-7kb7
5
url VCID-cwyp-gapg-yufk
vulnerability_id VCID-cwyp-gapg-yufk
summary poppler: reachable Object::dictLookup assertion in FileSpec class in FileSpec.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20650.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20650.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-20650
reference_id
reference_type
scores
0
value 0.00355
scoring_system epss
scoring_elements 0.57699
published_at 2026-04-01T12:55:00Z
1
value 0.00355
scoring_system epss
scoring_elements 0.57812
published_at 2026-04-21T12:55:00Z
2
value 0.00355
scoring_system epss
scoring_elements 0.57808
published_at 2026-04-13T12:55:00Z
3
value 0.00355
scoring_system epss
scoring_elements 0.57837
published_at 2026-04-16T12:55:00Z
4
value 0.00355
scoring_system epss
scoring_elements 0.57836
published_at 2026-04-18T12:55:00Z
5
value 0.00355
scoring_system epss
scoring_elements 0.57783
published_at 2026-04-02T12:55:00Z
6
value 0.00355
scoring_system epss
scoring_elements 0.57803
published_at 2026-04-04T12:55:00Z
7
value 0.00355
scoring_system epss
scoring_elements 0.57778
published_at 2026-04-07T12:55:00Z
8
value 0.00355
scoring_system epss
scoring_elements 0.57833
published_at 2026-04-08T12:55:00Z
9
value 0.00355
scoring_system epss
scoring_elements 0.57834
published_at 2026-04-09T12:55:00Z
10
value 0.00355
scoring_system epss
scoring_elements 0.57851
published_at 2026-04-11T12:55:00Z
11
value 0.00355
scoring_system epss
scoring_elements 0.57829
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-20650
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20650
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20650
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/commit/de0c0b8324e776f0b851485e0fc9622fc35695b7
reference_id
reference_type
scores
url https://gitlab.freedesktop.org/poppler/poppler/commit/de0c0b8324e776f0b851485e0fc9622fc35695b7
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/issues/704
reference_id
reference_type
scores
url https://gitlab.freedesktop.org/poppler/poppler/issues/704
6
reference_url https://lists.debian.org/debian-lts-announce/2019/09/msg00033.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2019/09/msg00033.html
7
reference_url https://lists.debian.org/debian-lts-announce/2020/11/msg00014.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2020/11/msg00014.html
8
reference_url https://lists.debian.org/debian-lts-announce/2022/09/msg00030.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2022/09/msg00030.html
9
reference_url http://www.securityfocus.com/bid/106459
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/106459
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1665263
reference_id 1665263
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1665263
11
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917974
reference_id 917974
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=917974
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.72.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:freedesktop:poppler:0.72.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.72.0:*:*:*:*:*:*:*
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
15
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
16
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*
17
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
18
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
19
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
20
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
21
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
22
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
23
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
24
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
25
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.6:*:*:*:*:*:*:*
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-20650
reference_id CVE-2018-20650
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2018-20650
35
reference_url https://access.redhat.com/errata/RHSA-2019:2022
reference_id RHSA-2019:2022
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2022
36
reference_url https://access.redhat.com/errata/RHSA-2019:2713
reference_id RHSA-2019:2713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2713
37
reference_url https://usn.ubuntu.com/3865-1/
reference_id USN-3865-1
reference_type
scores
url https://usn.ubuntu.com/3865-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2018-20650
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cwyp-gapg-yufk
6
url VCID-enu8-gjre-fbap
vulnerability_id VCID-enu8-gjre-fbap
summary poppler: uncontrolled recursion in pdfinfo and pdftops
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-23804.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-23804.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-23804
reference_id
reference_type
scores
0
value 0.00264
scoring_system epss
scoring_elements 0.49843
published_at 2026-04-01T12:55:00Z
1
value 0.00264
scoring_system epss
scoring_elements 0.4988
published_at 2026-04-02T12:55:00Z
2
value 0.00264
scoring_system epss
scoring_elements 0.49909
published_at 2026-04-04T12:55:00Z
3
value 0.00264
scoring_system epss
scoring_elements 0.49859
published_at 2026-04-07T12:55:00Z
4
value 0.00264
scoring_system epss
scoring_elements 0.49913
published_at 2026-04-08T12:55:00Z
5
value 0.00264
scoring_system epss
scoring_elements 0.49906
published_at 2026-04-09T12:55:00Z
6
value 0.00264
scoring_system epss
scoring_elements 0.49925
published_at 2026-04-11T12:55:00Z
7
value 0.00264
scoring_system epss
scoring_elements 0.49897
published_at 2026-04-12T12:55:00Z
8
value 0.00264
scoring_system epss
scoring_elements 0.49898
published_at 2026-04-13T12:55:00Z
9
value 0.00264
scoring_system epss
scoring_elements 0.49944
published_at 2026-04-18T12:55:00Z
10
value 0.00264
scoring_system epss
scoring_elements 0.49917
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-23804
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23804
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23804
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234526
reference_id 2234526
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234526
5
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2020-23804
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-enu8-gjre-fbap
7
url VCID-ervj-1sdg-b3bm
vulnerability_id VCID-ervj-1sdg-b3bm
summary poppler: pdfdetach utility does not validate save paths
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19060.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19060.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-19060
reference_id
reference_type
scores
0
value 0.00147
scoring_system epss
scoring_elements 0.35073
published_at 2026-04-01T12:55:00Z
1
value 0.00147
scoring_system epss
scoring_elements 0.35273
published_at 2026-04-02T12:55:00Z
2
value 0.00147
scoring_system epss
scoring_elements 0.35301
published_at 2026-04-04T12:55:00Z
3
value 0.00147
scoring_system epss
scoring_elements 0.35182
published_at 2026-04-07T12:55:00Z
4
value 0.00147
scoring_system epss
scoring_elements 0.35227
published_at 2026-04-08T12:55:00Z
5
value 0.00147
scoring_system epss
scoring_elements 0.35252
published_at 2026-04-09T12:55:00Z
6
value 0.00147
scoring_system epss
scoring_elements 0.35256
published_at 2026-04-11T12:55:00Z
7
value 0.00147
scoring_system epss
scoring_elements 0.35221
published_at 2026-04-18T12:55:00Z
8
value 0.00147
scoring_system epss
scoring_elements 0.35197
published_at 2026-04-13T12:55:00Z
9
value 0.00147
scoring_system epss
scoring_elements 0.35235
published_at 2026-04-16T12:55:00Z
10
value 0.00147
scoring_system epss
scoring_elements 0.35172
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-19060
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19060
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19060
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1649450
reference_id 1649450
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1649450
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913182
reference_id 913182
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913182
6
reference_url https://access.redhat.com/errata/RHSA-2019:2022
reference_id RHSA-2019:2022
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2022
7
reference_url https://usn.ubuntu.com/3837-1/
reference_id USN-3837-1
reference_type
scores
url https://usn.ubuntu.com/3837-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2018-19060
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ervj-1sdg-b3bm
8
url VCID-h3q1-dbx2-hubv
vulnerability_id VCID-h3q1-dbx2-hubv
summary A vulnerability has been discovered in Poppler which could allow for arbitrary code execution.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38784.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38784.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-38784
reference_id
reference_type
scores
0
value 0.00084
scoring_system epss
scoring_elements 0.24575
published_at 2026-04-09T12:55:00Z
1
value 0.00084
scoring_system epss
scoring_elements 0.24494
published_at 2026-04-13T12:55:00Z
2
value 0.00084
scoring_system epss
scoring_elements 0.24506
published_at 2026-04-16T12:55:00Z
3
value 0.00084
scoring_system epss
scoring_elements 0.24499
published_at 2026-04-18T12:55:00Z
4
value 0.00084
scoring_system epss
scoring_elements 0.24652
published_at 2026-04-02T12:55:00Z
5
value 0.00084
scoring_system epss
scoring_elements 0.24689
published_at 2026-04-04T12:55:00Z
6
value 0.00084
scoring_system epss
scoring_elements 0.24461
published_at 2026-04-07T12:55:00Z
7
value 0.00084
scoring_system epss
scoring_elements 0.24531
published_at 2026-04-08T12:55:00Z
8
value 0.00084
scoring_system epss
scoring_elements 0.24591
published_at 2026-04-11T12:55:00Z
9
value 0.00084
scoring_system epss
scoring_elements 0.24547
published_at 2026-04-12T12:55:00Z
10
value 0.00095
scoring_system epss
scoring_elements 0.26228
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-38784
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27337
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27337
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38784
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018971
reference_id 1018971
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1018971
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2124527
reference_id 2124527
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2124527
7
reference_url https://security.archlinux.org/AVG-2812
reference_id AVG-2812
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2812
8
reference_url https://security.gentoo.org/glsa/202209-21
reference_id GLSA-202209-21
reference_type
scores
url https://security.gentoo.org/glsa/202209-21
9
reference_url https://access.redhat.com/errata/RHSA-2023:2259
reference_id RHSA-2023:2259
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2259
10
reference_url https://access.redhat.com/errata/RHSA-2023:2810
reference_id RHSA-2023:2810
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:2810
11
reference_url https://usn.ubuntu.com/5606-1/
reference_id USN-5606-1
reference_type
scores
url https://usn.ubuntu.com/5606-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2022-38784
risk_score 3.5
exploitability 0.5
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h3q1-dbx2-hubv
9
url VCID-k1uz-1eqt-pbc6
vulnerability_id VCID-k1uz-1eqt-pbc6
summary poppler: buffer overflow in HtmlOutputDev::page
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18839.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-18839.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-18839
reference_id
reference_type
scores
0
value 0.00182
scoring_system epss
scoring_elements 0.39864
published_at 2026-04-01T12:55:00Z
1
value 0.00182
scoring_system epss
scoring_elements 0.40012
published_at 2026-04-02T12:55:00Z
2
value 0.00182
scoring_system epss
scoring_elements 0.39919
published_at 2026-04-21T12:55:00Z
3
value 0.00182
scoring_system epss
scoring_elements 0.40028
published_at 2026-04-16T12:55:00Z
4
value 0.00182
scoring_system epss
scoring_elements 0.39999
published_at 2026-04-18T12:55:00Z
5
value 0.00182
scoring_system epss
scoring_elements 0.40038
published_at 2026-04-04T12:55:00Z
6
value 0.00182
scoring_system epss
scoring_elements 0.39958
published_at 2026-04-07T12:55:00Z
7
value 0.00182
scoring_system epss
scoring_elements 0.40011
published_at 2026-04-08T12:55:00Z
8
value 0.00182
scoring_system epss
scoring_elements 0.40025
published_at 2026-04-09T12:55:00Z
9
value 0.00182
scoring_system epss
scoring_elements 0.40035
published_at 2026-04-11T12:55:00Z
10
value 0.00182
scoring_system epss
scoring_elements 0.39998
published_at 2026-04-12T12:55:00Z
11
value 0.00182
scoring_system epss
scoring_elements 0.39978
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-18839
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18839
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-18839
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234524
reference_id 2234524
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234524
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/issues/742
reference_id 742
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-04T16:29:54Z/
url https://gitlab.freedesktop.org/poppler/poppler/issues/742
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2020-18839
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k1uz-1eqt-pbc6
10
url VCID-qtb6-gvjp-cqbq
vulnerability_id VCID-qtb6-gvjp-cqbq
summary Multiple vulnerabilities have been discovered in Poppler, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27337.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-27337.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-27337
reference_id
reference_type
scores
0
value 0.00237
scoring_system epss
scoring_elements 0.46799
published_at 2026-04-21T12:55:00Z
1
value 0.00237
scoring_system epss
scoring_elements 0.46854
published_at 2026-04-16T12:55:00Z
2
value 0.00237
scoring_system epss
scoring_elements 0.46851
published_at 2026-04-18T12:55:00Z
3
value 0.00237
scoring_system epss
scoring_elements 0.46773
published_at 2026-04-02T12:55:00Z
4
value 0.00237
scoring_system epss
scoring_elements 0.46793
published_at 2026-04-04T12:55:00Z
5
value 0.00237
scoring_system epss
scoring_elements 0.46742
published_at 2026-04-07T12:55:00Z
6
value 0.00237
scoring_system epss
scoring_elements 0.46797
published_at 2026-04-08T12:55:00Z
7
value 0.00237
scoring_system epss
scoring_elements 0.46796
published_at 2026-04-09T12:55:00Z
8
value 0.00237
scoring_system epss
scoring_elements 0.46819
published_at 2026-04-11T12:55:00Z
9
value 0.00237
scoring_system epss
scoring_elements 0.46791
published_at 2026-04-12T12:55:00Z
10
value 0.00237
scoring_system epss
scoring_elements 0.46798
published_at 2026-04-13T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-27337
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27337
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27337
3
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38784
4
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010695
reference_id 1010695
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1010695
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2087190
reference_id 2087190
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2087190
7
reference_url https://security.archlinux.org/AVG-2812
reference_id AVG-2812
reference_type
scores
0
value Unknown
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-2812
8
reference_url https://security.gentoo.org/glsa/202509-01
reference_id GLSA-202509-01
reference_type
scores
url https://security.gentoo.org/glsa/202509-01
9
reference_url https://access.redhat.com/errata/RHSA-2022:7594
reference_id RHSA-2022:7594
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:7594
10
reference_url https://access.redhat.com/errata/RHSA-2022:8151
reference_id RHSA-2022:8151
reference_type
scores
url https://access.redhat.com/errata/RHSA-2022:8151
11
reference_url https://usn.ubuntu.com/6273-1/
reference_id USN-6273-1
reference_type
scores
url https://usn.ubuntu.com/6273-1/
12
reference_url https://usn.ubuntu.com/7687-1/
reference_id USN-7687-1
reference_type
scores
url https://usn.ubuntu.com/7687-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2022-27337
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qtb6-gvjp-cqbq
11
url VCID-s3q2-uvnc-wfep
vulnerability_id VCID-s3q2-uvnc-wfep
summary poppler: heap-based buffer over-read in function PSOutputDev::checkPageSlice in PSOutputDev.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10871.json
reference_id
reference_type
scores
0
value 5.1
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10871.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-10871
reference_id
reference_type
scores
0
value 0.00628
scoring_system epss
scoring_elements 0.70182
published_at 2026-04-01T12:55:00Z
1
value 0.00628
scoring_system epss
scoring_elements 0.70276
published_at 2026-04-21T12:55:00Z
2
value 0.00628
scoring_system epss
scoring_elements 0.70244
published_at 2026-04-13T12:55:00Z
3
value 0.00628
scoring_system epss
scoring_elements 0.70286
published_at 2026-04-16T12:55:00Z
4
value 0.00628
scoring_system epss
scoring_elements 0.70295
published_at 2026-04-18T12:55:00Z
5
value 0.00628
scoring_system epss
scoring_elements 0.70194
published_at 2026-04-02T12:55:00Z
6
value 0.00628
scoring_system epss
scoring_elements 0.70211
published_at 2026-04-04T12:55:00Z
7
value 0.00628
scoring_system epss
scoring_elements 0.70188
published_at 2026-04-07T12:55:00Z
8
value 0.00628
scoring_system epss
scoring_elements 0.70234
published_at 2026-04-08T12:55:00Z
9
value 0.00628
scoring_system epss
scoring_elements 0.70249
published_at 2026-04-09T12:55:00Z
10
value 0.00628
scoring_system epss
scoring_elements 0.70272
published_at 2026-04-11T12:55:00Z
11
value 0.00628
scoring_system epss
scoring_elements 0.70257
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-10871
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10871
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10871
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/issues/751
reference_id
reference_type
scores
url https://gitlab.freedesktop.org/poppler/poppler/issues/751
5
reference_url https://lists.debian.org/debian-lts-announce/2019/10/msg00024.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2019/10/msg00024.html
6
reference_url https://lists.debian.org/debian-lts-announce/2019/10/msg00025.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2019/10/msg00025.html
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7MAWV24KRXTFODLVT46RXI27XIQFX2QR/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7MAWV24KRXTFODLVT46RXI27XIQFX2QR/
8
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YWS7NVFFCUY3YSTMEKZEJEU6JVUUBKHB/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YWS7NVFFCUY3YSTMEKZEJEU6JVUUBKHB/
9
reference_url http://www.securityfocus.com/bid/107862
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/107862
10
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1696636
reference_id 1696636
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1696636
11
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=926529
reference_id 926529
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=926529
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:freedesktop:poppler:0.74.0:*:*:*:*:*:*:*
13
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-10871
reference_id CVE-2019-10871
reference_type
scores
0
value 4.3
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:N/I:N/A:P
1
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2019-10871
14
reference_url https://access.redhat.com/errata/RHSA-2019:2713
reference_id RHSA-2019:2713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2713
15
reference_url https://access.redhat.com/errata/RHSA-2020:1074
reference_id RHSA-2020:1074
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1074
16
reference_url https://usn.ubuntu.com/4646-1/
reference_id USN-4646-1
reference_type
scores
url https://usn.ubuntu.com/4646-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2019-10871
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s3q2-uvnc-wfep
12
url VCID-tt3h-qbbv-zuev
vulnerability_id VCID-tt3h-qbbv-zuev
summary poppler: memory leak in GfxColorSpace::setDisplayProfile in GfxState.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18897.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18897.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-18897
reference_id
reference_type
scores
0
value 0.0015
scoring_system epss
scoring_elements 0.3556
published_at 2026-04-21T12:55:00Z
1
value 0.0015
scoring_system epss
scoring_elements 0.35581
published_at 2026-04-13T12:55:00Z
2
value 0.0015
scoring_system epss
scoring_elements 0.3562
published_at 2026-04-16T12:55:00Z
3
value 0.0015
scoring_system epss
scoring_elements 0.35609
published_at 2026-04-18T12:55:00Z
4
value 0.00197
scoring_system epss
scoring_elements 0.41653
published_at 2026-04-04T12:55:00Z
5
value 0.00197
scoring_system epss
scoring_elements 0.4163
published_at 2026-04-08T12:55:00Z
6
value 0.00197
scoring_system epss
scoring_elements 0.41639
published_at 2026-04-09T12:55:00Z
7
value 0.00197
scoring_system epss
scoring_elements 0.41663
published_at 2026-04-11T12:55:00Z
8
value 0.00197
scoring_system epss
scoring_elements 0.41629
published_at 2026-04-12T12:55:00Z
9
value 0.00197
scoring_system epss
scoring_elements 0.41536
published_at 2026-04-01T12:55:00Z
10
value 0.00197
scoring_system epss
scoring_elements 0.4158
published_at 2026-04-07T12:55:00Z
11
value 0.00197
scoring_system epss
scoring_elements 0.41626
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-18897
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18897
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18897
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1646546
reference_id 1646546
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1646546
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913164
reference_id 913164
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913164
6
reference_url https://access.redhat.com/errata/RHSA-2019:2022
reference_id RHSA-2019:2022
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2022
7
reference_url https://access.redhat.com/errata/RHSA-2019:2713
reference_id RHSA-2019:2713
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2713
8
reference_url https://usn.ubuntu.com/4042-1/
reference_id USN-4042-1
reference_type
scores
url https://usn.ubuntu.com/4042-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2018-18897
risk_score 1.9
exploitability 0.5
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tt3h-qbbv-zuev
13
url VCID-wbyn-9mx6-a3gd
vulnerability_id VCID-wbyn-9mx6-a3gd
summary poppler: out-of-bounds read in EmbFile::save2 in FileSpec.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19059.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19059.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-19059
reference_id
reference_type
scores
0
value 0.00129
scoring_system epss
scoring_elements 0.3222
published_at 2026-04-01T12:55:00Z
1
value 0.00129
scoring_system epss
scoring_elements 0.32355
published_at 2026-04-02T12:55:00Z
2
value 0.00129
scoring_system epss
scoring_elements 0.32392
published_at 2026-04-04T12:55:00Z
3
value 0.00129
scoring_system epss
scoring_elements 0.32217
published_at 2026-04-07T12:55:00Z
4
value 0.00129
scoring_system epss
scoring_elements 0.32266
published_at 2026-04-08T12:55:00Z
5
value 0.00129
scoring_system epss
scoring_elements 0.32295
published_at 2026-04-09T12:55:00Z
6
value 0.00129
scoring_system epss
scoring_elements 0.32296
published_at 2026-04-11T12:55:00Z
7
value 0.00129
scoring_system epss
scoring_elements 0.32258
published_at 2026-04-12T12:55:00Z
8
value 0.00129
scoring_system epss
scoring_elements 0.32226
published_at 2026-04-13T12:55:00Z
9
value 0.00129
scoring_system epss
scoring_elements 0.32261
published_at 2026-04-16T12:55:00Z
10
value 0.00129
scoring_system epss
scoring_elements 0.32241
published_at 2026-04-18T12:55:00Z
11
value 0.00129
scoring_system epss
scoring_elements 0.32212
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-19059
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19059
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19059
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1649440
reference_id 1649440
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1649440
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913180
reference_id 913180
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913180
6
reference_url https://access.redhat.com/errata/RHSA-2019:2022
reference_id RHSA-2019:2022
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2022
7
reference_url https://usn.ubuntu.com/3837-1/
reference_id USN-3837-1
reference_type
scores
url https://usn.ubuntu.com/3837-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2018-19059
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wbyn-9mx6-a3gd
14
url VCID-zzy2-1yr8-83cf
vulnerability_id VCID-zzy2-1yr8-83cf
summary poppler: reachable abort in Object.h
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19058.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19058.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-19058
reference_id
reference_type
scores
0
value 0.00276
scoring_system epss
scoring_elements 0.50976
published_at 2026-04-01T12:55:00Z
1
value 0.00276
scoring_system epss
scoring_elements 0.51029
published_at 2026-04-02T12:55:00Z
2
value 0.00276
scoring_system epss
scoring_elements 0.51054
published_at 2026-04-04T12:55:00Z
3
value 0.00276
scoring_system epss
scoring_elements 0.51011
published_at 2026-04-07T12:55:00Z
4
value 0.00276
scoring_system epss
scoring_elements 0.51068
published_at 2026-04-08T12:55:00Z
5
value 0.00276
scoring_system epss
scoring_elements 0.51065
published_at 2026-04-09T12:55:00Z
6
value 0.00276
scoring_system epss
scoring_elements 0.51108
published_at 2026-04-11T12:55:00Z
7
value 0.00276
scoring_system epss
scoring_elements 0.51087
published_at 2026-04-12T12:55:00Z
8
value 0.00276
scoring_system epss
scoring_elements 0.51071
published_at 2026-04-13T12:55:00Z
9
value 0.00276
scoring_system epss
scoring_elements 0.5111
published_at 2026-04-16T12:55:00Z
10
value 0.00276
scoring_system epss
scoring_elements 0.51116
published_at 2026-04-18T12:55:00Z
11
value 0.00276
scoring_system epss
scoring_elements 0.51093
published_at 2026-04-21T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-19058
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19058
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19058
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1649435
reference_id 1649435
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1649435
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913177
reference_id 913177
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=913177
6
reference_url https://access.redhat.com/errata/RHSA-2019:2022
reference_id RHSA-2019:2022
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:2022
7
reference_url https://usn.ubuntu.com/3837-1/
reference_id USN-3837-1
reference_type
scores
url https://usn.ubuntu.com/3837-1/
fixed_packages
0
url pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
purl pkg:deb/debian/poppler@20.09.0-3.1%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-48ua-ch85-w3cg
2
vulnerability VCID-4ucr-xaac-7uc7
3
vulnerability VCID-72nw-9jgd-4kdw
4
vulnerability VCID-a8zz-dfdm-1uf7
5
vulnerability VCID-anb3-1s96-wbaq
6
vulnerability VCID-bc96-6vy6-ryfz
7
vulnerability VCID-c4wz-u632-eyeh
8
vulnerability VCID-d5fj-5prg-97f4
9
vulnerability VCID-n1sx-y7xc-kqfb
10
vulnerability VCID-nqqu-29qr-wfec
11
vulnerability VCID-tfe8-bq62-3ke4
12
vulnerability VCID-ygrf-gq35-fkfd
13
vulnerability VCID-yy6j-1h5z-wbgp
14
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1
aliases CVE-2018-19058
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zzy2-1yr8-83cf
Risk_score3.4
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@20.09.0-3.1%252Bdeb11u1