Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
Typedeb
Namespacedebian
Namepoppler
Version22.12.0-2+deb12u1
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version25.03.0-11.1
Latest_non_vulnerable_version25.03.0-11.1
Affected_by_vulnerabilities
0
url VCID-48d5-zxmm-r3g4
vulnerability_id VCID-48d5-zxmm-r3g4
summary An issue in the pdfseparate utility of freedesktop poppler v25.04.0 allows attackers to cause an infinite recursion via supplying a crafted PDF file. This can lead to a Denial of Service (DoS).
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-50420
reference_id
reference_type
scores
0
value 0.00051
scoring_system epss
scoring_elements 0.16017
published_at 2026-04-07T12:55:00Z
1
value 0.00051
scoring_system epss
scoring_elements 0.16163
published_at 2026-04-02T12:55:00Z
2
value 0.00051
scoring_system epss
scoring_elements 0.16103
published_at 2026-04-08T12:55:00Z
3
value 0.00051
scoring_system epss
scoring_elements 0.16224
published_at 2026-04-04T12:55:00Z
4
value 0.00056
scoring_system epss
scoring_elements 0.17583
published_at 2026-04-18T12:55:00Z
5
value 0.00056
scoring_system epss
scoring_elements 0.17679
published_at 2026-04-12T12:55:00Z
6
value 0.00056
scoring_system epss
scoring_elements 0.17628
published_at 2026-04-13T12:55:00Z
7
value 0.00056
scoring_system epss
scoring_elements 0.17575
published_at 2026-04-16T12:55:00Z
8
value 0.00056
scoring_system epss
scoring_elements 0.17707
published_at 2026-04-09T12:55:00Z
9
value 0.00056
scoring_system epss
scoring_elements 0.17725
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-50420
1
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-50420
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-50420
2
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
3
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1110463
reference_id 1110463
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1110463
4
reference_url https://github.com/Landw-hub/CVE-2025-50420
reference_id CVE-2025-50420
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T19:38:23Z/
url https://github.com/Landw-hub/CVE-2025-50420
5
reference_url http://freedesktop.com
reference_id freedesktop.com
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T19:38:23Z/
url http://freedesktop.com
6
reference_url http://poppler.com
reference_id poppler.com
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-08-04T19:38:23Z/
url http://poppler.com
7
reference_url https://usn.ubuntu.com/7708-1/
reference_id USN-7708-1
reference_type
scores
url https://usn.ubuntu.com/7708-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2025-50420
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-48d5-zxmm-r3g4
1
url VCID-a8zz-dfdm-1uf7
vulnerability_id VCID-a8zz-dfdm-1uf7
summary poppler: Poppler stack overflow
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43718.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43718.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-43718
reference_id
reference_type
scores
0
value 8e-05
scoring_system epss
scoring_elements 0.00727
published_at 2026-04-02T12:55:00Z
1
value 8e-05
scoring_system epss
scoring_elements 0.00713
published_at 2026-04-18T12:55:00Z
2
value 8e-05
scoring_system epss
scoring_elements 0.00728
published_at 2026-04-08T12:55:00Z
3
value 8e-05
scoring_system epss
scoring_elements 0.00719
published_at 2026-04-09T12:55:00Z
4
value 8e-05
scoring_system epss
scoring_elements 0.00716
published_at 2026-04-11T12:55:00Z
5
value 8e-05
scoring_system epss
scoring_elements 0.0071
published_at 2026-04-13T12:55:00Z
6
value 8e-05
scoring_system epss
scoring_elements 0.00708
published_at 2026-04-16T12:55:00Z
7
value 8e-05
scoring_system epss
scoring_elements 0.00724
published_at 2026-04-04T12:55:00Z
8
value 8e-05
scoring_system epss
scoring_elements 0.00729
published_at 2026-04-07T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-43718
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43718
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43718
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.1
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117046
reference_id 1117046
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117046
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2400893
reference_id 2400893
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2400893
6
reference_url https://github.com/ShadowByte1/CVE-Reports/blob/main/CVE-2025-43718.md
reference_id CVE-2025-43718.md
reference_type
scores
0
value 2.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-01T19:15:35Z/
url https://github.com/ShadowByte1/CVE-Reports/blob/main/CVE-2025-43718.md
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f54b815672117c250420787c8c006de98e8c7408
reference_id f54b815672117c250420787c8c006de98e8c7408
reference_type
scores
0
value 2.9
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-01T19:15:35Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f54b815672117c250420787c8c006de98e8c7408
8
reference_url https://access.redhat.com/errata/RHSA-2026:7364
reference_id RHSA-2026:7364
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7364
9
reference_url https://usn.ubuntu.com/7803-1/
reference_id USN-7803-1
reference_type
scores
url https://usn.ubuntu.com/7803-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-11.1
purl pkg:deb/debian/poppler@25.03.0-11.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-11.1
aliases CVE-2025-43718
risk_score 1.8
exploitability 0.5
weighted_severity 3.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a8zz-dfdm-1uf7
2
url VCID-anb3-1s96-wbaq
vulnerability_id VCID-anb3-1s96-wbaq
summary poppler: SignatureValue not checked within SignerInfo
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43903.json
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-43903.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-43903
reference_id
reference_type
scores
0
value 0.00042
scoring_system epss
scoring_elements 0.13033
published_at 2026-04-02T12:55:00Z
1
value 0.00042
scoring_system epss
scoring_elements 0.128
published_at 2026-04-18T12:55:00Z
2
value 0.00042
scoring_system epss
scoring_elements 0.12938
published_at 2026-04-12T12:55:00Z
3
value 0.00042
scoring_system epss
scoring_elements 0.12894
published_at 2026-04-13T12:55:00Z
4
value 0.00042
scoring_system epss
scoring_elements 0.12797
published_at 2026-04-16T12:55:00Z
5
value 0.00042
scoring_system epss
scoring_elements 0.13085
published_at 2026-04-04T12:55:00Z
6
value 0.00042
scoring_system epss
scoring_elements 0.12885
published_at 2026-04-07T12:55:00Z
7
value 0.00042
scoring_system epss
scoring_elements 0.12963
published_at 2026-04-08T12:55:00Z
8
value 0.00042
scoring_system epss
scoring_elements 0.13014
published_at 2026-04-09T12:55:00Z
9
value 0.00042
scoring_system epss
scoring_elements 0.12974
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-43903
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43903
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-43903
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103545
reference_id 1103545
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103545
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2361067
reference_id 2361067
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2361067
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f1b9c830f145a0042e853d6462b2f9ca4016c669
reference_id f1b9c830f145a0042e853d6462b2f9ca4016c669
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-21T02:50:50Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/f1b9c830f145a0042e853d6462b2f9ca4016c669
7
reference_url https://usn.ubuntu.com/7471-1/
reference_id USN-7471-1
reference_type
scores
url https://usn.ubuntu.com/7471-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2025-43903
risk_score 1.9
exploitability 0.5
weighted_severity 3.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-anb3-1s96-wbaq
3
url VCID-ygrf-gq35-fkfd
vulnerability_id VCID-ygrf-gq35-fkfd
summary Multiple vulnerabilities have been discovered in Poppler, the worst of which could lead to execution of arbitrary code.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52886.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52886.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-52886
reference_id
reference_type
scores
0
value 0.00091
scoring_system epss
scoring_elements 0.25732
published_at 2026-04-02T12:55:00Z
1
value 0.00091
scoring_system epss
scoring_elements 0.25579
published_at 2026-04-16T12:55:00Z
2
value 0.00091
scoring_system epss
scoring_elements 0.25577
published_at 2026-04-13T12:55:00Z
3
value 0.00091
scoring_system epss
scoring_elements 0.25634
published_at 2026-04-12T12:55:00Z
4
value 0.00091
scoring_system epss
scoring_elements 0.25675
published_at 2026-04-11T12:55:00Z
5
value 0.00091
scoring_system epss
scoring_elements 0.25663
published_at 2026-04-09T12:55:00Z
6
value 0.00091
scoring_system epss
scoring_elements 0.25616
published_at 2026-04-08T12:55:00Z
7
value 0.00091
scoring_system epss
scoring_elements 0.25774
published_at 2026-04-04T12:55:00Z
8
value 0.00091
scoring_system epss
scoring_elements 0.25543
published_at 2026-04-07T12:55:00Z
9
value 0.00098
scoring_system epss
scoring_elements 0.26973
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-52886
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52886
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52886
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203
reference_id 04bd91684ed41d67ae0f10cde0660e4ed74ac203
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/04bd91684ed41d67ae0f10cde0660e4ed74ac203
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108784
reference_id 1108784
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108784
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581
reference_id 1581
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1581
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828
reference_id 1828
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1828
8
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2375930
reference_id 2375930
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2375930
9
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5
reference_id ac36affcc8486de38e8905a8d6547a3464ff46e5
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ac36affcc8486de38e8905a8d6547a3464ff46e5
10
reference_url https://securitylab.github.com/advisories/GHSL-2025-054_poppler/
reference_id GHSL-2025-054_poppler
reference_type
scores
0
value 5.5
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:P
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T15:59:12Z/
url https://securitylab.github.com/advisories/GHSL-2025-054_poppler/
11
reference_url https://security.gentoo.org/glsa/202509-01
reference_id GLSA-202509-01
reference_type
scores
url https://security.gentoo.org/glsa/202509-01
12
reference_url https://usn.ubuntu.com/7675-1/
reference_id USN-7675-1
reference_type
scores
url https://usn.ubuntu.com/7675-1/
13
reference_url https://usn.ubuntu.com/7687-1/
reference_id USN-7687-1
reference_type
scores
url https://usn.ubuntu.com/7687-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2025-52886
risk_score 1.9
exploitability 0.5
weighted_severity 3.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ygrf-gq35-fkfd
4
url VCID-yy6j-1h5z-wbgp
vulnerability_id VCID-yy6j-1h5z-wbgp
summary poppler: Use-After-Free in StructTreeRoot class
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52885.json
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-52885.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-52885
reference_id
reference_type
scores
0
value 0.00025
scoring_system epss
scoring_elements 0.0662
published_at 2026-04-02T12:55:00Z
1
value 0.00025
scoring_system epss
scoring_elements 0.06639
published_at 2026-04-18T12:55:00Z
2
value 0.00025
scoring_system epss
scoring_elements 0.06644
published_at 2026-04-07T12:55:00Z
3
value 0.00025
scoring_system epss
scoring_elements 0.06694
published_at 2026-04-08T12:55:00Z
4
value 0.00025
scoring_system epss
scoring_elements 0.06728
published_at 2026-04-09T12:55:00Z
5
value 0.00025
scoring_system epss
scoring_elements 0.06727
published_at 2026-04-11T12:55:00Z
6
value 0.00025
scoring_system epss
scoring_elements 0.0672
published_at 2026-04-12T12:55:00Z
7
value 0.00025
scoring_system epss
scoring_elements 0.06713
published_at 2026-04-13T12:55:00Z
8
value 0.00025
scoring_system epss
scoring_elements 0.06648
published_at 2026-04-16T12:55:00Z
9
value 0.00025
scoring_system epss
scoring_elements 0.06664
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-52885
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52885
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52885
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117853
reference_id 1117853
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1117853
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884
reference_id 1884
reference_type
scores
0
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-14T14:59:44Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884#note_3114334
reference_id 1884#note_3114334
reference_type
scores
0
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-14T14:59:44Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1884#note_3114334
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2403224
reference_id 2403224
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2403224
8
reference_url https://securitylab.github.com/advisories/GHSL-2025-042_poppler/
reference_id GHSL-2025-042_poppler
reference_type
scores
0
value 6.1
scoring_system cvssv4
scoring_elements CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-14T14:59:44Z/
url https://securitylab.github.com/advisories/GHSL-2025-042_poppler/
9
reference_url https://access.redhat.com/errata/RHSA-2026:7364
reference_id RHSA-2026:7364
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:7364
10
reference_url https://usn.ubuntu.com/7858-1/
reference_id USN-7858-1
reference_type
scores
url https://usn.ubuntu.com/7858-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-11.1
purl pkg:deb/debian/poppler@25.03.0-11.1
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-11.1
aliases CVE-2025-52885
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yy6j-1h5z-wbgp
5
url VCID-yyxy-juya-a3f1
vulnerability_id VCID-yyxy-juya-a3f1
summary poppler: pdfinfo: crash in broken documents when using -dests parameter
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6239.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6239.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-6239
reference_id
reference_type
scores
0
value 0.00127
scoring_system epss
scoring_elements 0.32076
published_at 2026-04-18T12:55:00Z
1
value 0.00127
scoring_system epss
scoring_elements 0.32097
published_at 2026-04-12T12:55:00Z
2
value 0.00127
scoring_system epss
scoring_elements 0.32065
published_at 2026-04-13T12:55:00Z
3
value 0.00127
scoring_system epss
scoring_elements 0.32099
published_at 2026-04-16T12:55:00Z
4
value 0.00127
scoring_system epss
scoring_elements 0.32188
published_at 2026-04-02T12:55:00Z
5
value 0.00127
scoring_system epss
scoring_elements 0.32226
published_at 2026-04-04T12:55:00Z
6
value 0.00127
scoring_system epss
scoring_elements 0.32051
published_at 2026-04-07T12:55:00Z
7
value 0.00127
scoring_system epss
scoring_elements 0.32102
published_at 2026-04-08T12:55:00Z
8
value 0.00127
scoring_system epss
scoring_elements 0.32131
published_at 2026-04-09T12:55:00Z
9
value 0.00127
scoring_system epss
scoring_elements 0.32135
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-6239
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6239
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6239
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1074146
reference_id 1074146
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1074146
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2293594
reference_id 2293594
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://bugzilla.redhat.com/show_bug.cgi?id=2293594
6
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
7
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb
reference_id cpe:/a:redhat:enterprise_linux:8::crb
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb
8
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
reference_id cpe:/a:redhat:enterprise_linux:9::appstream
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream
9
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb
reference_id cpe:/a:redhat:enterprise_linux:9::crb
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb
10
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10
reference_id cpe:/o:redhat:enterprise_linux:10
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10
11
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
12
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
13
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
14
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
15
reference_url https://access.redhat.com/security/cve/CVE-2024-6239
reference_id CVE-2024-6239
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://access.redhat.com/security/cve/CVE-2024-6239
16
reference_url https://access.redhat.com/errata/RHSA-2024:5305
reference_id RHSA-2024:5305
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://access.redhat.com/errata/RHSA-2024:5305
17
reference_url https://access.redhat.com/errata/RHSA-2024:9167
reference_id RHSA-2024:9167
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-24T15:14:35Z/
url https://access.redhat.com/errata/RHSA-2024:9167
18
reference_url https://usn.ubuntu.com/6915-1/
reference_id USN-6915-1
reference_type
scores
url https://usn.ubuntu.com/6915-1/
fixed_packages
0
url pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
purl pkg:deb/debian/poppler@25.03.0-5%2Bdeb13u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-a8zz-dfdm-1uf7
1
vulnerability VCID-yy6j-1h5z-wbgp
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@25.03.0-5%252Bdeb13u2
aliases CVE-2024-6239
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yyxy-juya-a3f1
Fixing_vulnerabilities
0
url VCID-48ua-ch85-w3cg
vulnerability_id VCID-48ua-ch85-w3cg
summary poppler: Reachable assertion in Object.h
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38349.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-38349.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-38349
reference_id
reference_type
scores
0
value 0.00021
scoring_system epss
scoring_elements 0.05714
published_at 2026-04-02T12:55:00Z
1
value 0.00021
scoring_system epss
scoring_elements 0.05743
published_at 2026-04-16T12:55:00Z
2
value 0.00021
scoring_system epss
scoring_elements 0.05794
published_at 2026-04-11T12:55:00Z
3
value 0.00021
scoring_system epss
scoring_elements 0.05785
published_at 2026-04-12T12:55:00Z
4
value 0.00021
scoring_system epss
scoring_elements 0.05779
published_at 2026-04-13T12:55:00Z
5
value 0.00021
scoring_system epss
scoring_elements 0.05755
published_at 2026-04-04T12:55:00Z
6
value 0.00021
scoring_system epss
scoring_elements 0.05751
published_at 2026-04-18T12:55:00Z
7
value 0.00021
scoring_system epss
scoring_elements 0.0579
published_at 2026-04-08T12:55:00Z
8
value 0.00021
scoring_system epss
scoring_elements 0.05815
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-38349
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38349
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-38349
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1282
reference_id 1282
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:39:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1282
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2251630
reference_id 2251630
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2251630
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/4564a002bcb6094cc460bc0d5ddff9423fe6dd28
reference_id 4564a002bcb6094cc460bc0d5ddff9423fe6dd28
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:39:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/4564a002bcb6094cc460bc0d5ddff9423fe6dd28
7
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-38349
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-48ua-ch85-w3cg
1
url VCID-4ucr-xaac-7uc7
vulnerability_id VCID-4ucr-xaac-7uc7
summary poppler: Floating-Point Exception in Poppler
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32364.json
reference_id
reference_type
scores
0
value 4.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32364.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32364
reference_id
reference_type
scores
0
value 0.00094
scoring_system epss
scoring_elements 0.26434
published_at 2026-04-02T12:55:00Z
1
value 0.00094
scoring_system epss
scoring_elements 0.26256
published_at 2026-04-18T12:55:00Z
2
value 0.00094
scoring_system epss
scoring_elements 0.26371
published_at 2026-04-09T12:55:00Z
3
value 0.00094
scoring_system epss
scoring_elements 0.2638
published_at 2026-04-11T12:55:00Z
4
value 0.00094
scoring_system epss
scoring_elements 0.26333
published_at 2026-04-12T12:55:00Z
5
value 0.00094
scoring_system epss
scoring_elements 0.26275
published_at 2026-04-13T12:55:00Z
6
value 0.00094
scoring_system epss
scoring_elements 0.26281
published_at 2026-04-16T12:55:00Z
7
value 0.00094
scoring_system epss
scoring_elements 0.26478
published_at 2026-04-04T12:55:00Z
8
value 0.00094
scoring_system epss
scoring_elements 0.26252
published_at 2026-04-07T12:55:00Z
9
value 0.00094
scoring_system epss
scoring_elements 0.26319
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32364
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32364
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32364
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102190
reference_id 1102190
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102190
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1574
reference_id 1574
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T16:06:56Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1574
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2357657
reference_id 2357657
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2357657
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/d87bc726c7cc98f8c26b60ece5f20236e9de1bc3
reference_id d87bc726c7cc98f8c26b60ece5f20236e9de1bc3
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T16:06:56Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/d87bc726c7cc98f8c26b60ece5f20236e9de1bc3
8
reference_url https://usn.ubuntu.com/7426-1/
reference_id USN-7426-1
reference_type
scores
url https://usn.ubuntu.com/7426-1/
9
reference_url https://usn.ubuntu.com/7426-2/
reference_id USN-7426-2
reference_type
scores
url https://usn.ubuntu.com/7426-2/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2025-32364
risk_score 1.8
exploitability 0.5
weighted_severity 3.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4ucr-xaac-7uc7
2
url VCID-72nw-9jgd-4kdw
vulnerability_id VCID-72nw-9jgd-4kdw
summary poppler: abort in main() in pdfunite.cc
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37051.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37051.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-37051
reference_id
reference_type
scores
0
value 0.00044
scoring_system epss
scoring_elements 0.13629
published_at 2026-04-02T12:55:00Z
1
value 0.00044
scoring_system epss
scoring_elements 0.1369
published_at 2026-04-04T12:55:00Z
2
value 0.00044
scoring_system epss
scoring_elements 0.1349
published_at 2026-04-07T12:55:00Z
3
value 0.00044
scoring_system epss
scoring_elements 0.13571
published_at 2026-04-08T12:55:00Z
4
value 0.00044
scoring_system epss
scoring_elements 0.13621
published_at 2026-04-09T12:55:00Z
5
value 0.00044
scoring_system epss
scoring_elements 0.13593
published_at 2026-04-11T12:55:00Z
6
value 0.00044
scoring_system epss
scoring_elements 0.13556
published_at 2026-04-12T12:55:00Z
7
value 0.00044
scoring_system epss
scoring_elements 0.13508
published_at 2026-04-13T12:55:00Z
8
value 0.00044
scoring_system epss
scoring_elements 0.1342
published_at 2026-04-16T12:55:00Z
9
value 0.00044
scoring_system epss
scoring_elements 0.13416
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-37051
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37051
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37051
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234528
reference_id 2234528
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234528
5
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-37051
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-72nw-9jgd-4kdw
3
url VCID-bc96-6vy6-ryfz
vulnerability_id VCID-bc96-6vy6-ryfz
summary poppler: Stack-Overflow in `FoFiType1C::cvtGlyph`
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36023.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36023.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-36023
reference_id
reference_type
scores
0
value 0.00068
scoring_system epss
scoring_elements 0.20984
published_at 2026-04-01T12:55:00Z
1
value 0.00068
scoring_system epss
scoring_elements 0.21138
published_at 2026-04-02T12:55:00Z
2
value 0.00068
scoring_system epss
scoring_elements 0.20955
published_at 2026-04-18T12:55:00Z
3
value 0.00068
scoring_system epss
scoring_elements 0.2102
published_at 2026-04-12T12:55:00Z
4
value 0.00068
scoring_system epss
scoring_elements 0.20968
published_at 2026-04-13T12:55:00Z
5
value 0.00068
scoring_system epss
scoring_elements 0.20956
published_at 2026-04-16T12:55:00Z
6
value 0.00068
scoring_system epss
scoring_elements 0.21193
published_at 2026-04-04T12:55:00Z
7
value 0.00068
scoring_system epss
scoring_elements 0.20906
published_at 2026-04-07T12:55:00Z
8
value 0.00068
scoring_system epss
scoring_elements 0.20987
published_at 2026-04-08T12:55:00Z
9
value 0.00068
scoring_system epss
scoring_elements 0.21048
published_at 2026-04-09T12:55:00Z
10
value 0.00068
scoring_system epss
scoring_elements 0.21064
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-36023
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36023
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36023
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1013
reference_id 1013
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:59:31Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1013
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2231510
reference_id 2231510
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2231510
6
reference_url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
reference_id msg00017.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:59:31Z/
url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
7
reference_url https://usn.ubuntu.com/6299-1/
reference_id USN-6299-1
reference_type
scores
url https://usn.ubuntu.com/6299-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2020-36023
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bc96-6vy6-ryfz
4
url VCID-c4wz-u632-eyeh
vulnerability_id VCID-c4wz-u632-eyeh
summary poppler: abort in PDFDoc::savePageAs in PDFDoc.c
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37050.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37050.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-37050
reference_id
reference_type
scores
0
value 0.00064
scoring_system epss
scoring_elements 0.19984
published_at 2026-04-02T12:55:00Z
1
value 0.00064
scoring_system epss
scoring_elements 0.19786
published_at 2026-04-18T12:55:00Z
2
value 0.00064
scoring_system epss
scoring_elements 0.19769
published_at 2026-04-07T12:55:00Z
3
value 0.00064
scoring_system epss
scoring_elements 0.19849
published_at 2026-04-08T12:55:00Z
4
value 0.00064
scoring_system epss
scoring_elements 0.19903
published_at 2026-04-09T12:55:00Z
5
value 0.00064
scoring_system epss
scoring_elements 0.19912
published_at 2026-04-11T12:55:00Z
6
value 0.00064
scoring_system epss
scoring_elements 0.19869
published_at 2026-04-12T12:55:00Z
7
value 0.00064
scoring_system epss
scoring_elements 0.19811
published_at 2026-04-13T12:55:00Z
8
value 0.00064
scoring_system epss
scoring_elements 0.19783
published_at 2026-04-16T12:55:00Z
9
value 0.00064
scoring_system epss
scoring_elements 0.20043
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-37050
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37050
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37050
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1274
reference_id 1274
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T14:19:32Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1274
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234527
reference_id 2234527
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234527
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/dcd5bd8238ea448addd102ff045badd0aca1b990
reference_id dcd5bd8238ea448addd102ff045badd0aca1b990
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T14:19:32Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/dcd5bd8238ea448addd102ff045badd0aca1b990
7
reference_url https://lists.debian.org/debian-lts-announce/2023/10/msg00022.html
reference_id msg00022.html
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-02T14:19:32Z/
url https://lists.debian.org/debian-lts-announce/2023/10/msg00022.html
8
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-37050
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c4wz-u632-eyeh
5
url VCID-d5fj-5prg-97f4
vulnerability_id VCID-d5fj-5prg-97f4
summary poppler: Out-of-Bounds Read in Poppler
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32365.json
reference_id
reference_type
scores
0
value 3.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32365.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32365
reference_id
reference_type
scores
0
value 0.00079
scoring_system epss
scoring_elements 0.23524
published_at 2026-04-02T12:55:00Z
1
value 0.00079
scoring_system epss
scoring_elements 0.23403
published_at 2026-04-18T12:55:00Z
2
value 0.00079
scoring_system epss
scoring_elements 0.23466
published_at 2026-04-09T12:55:00Z
3
value 0.00079
scoring_system epss
scoring_elements 0.23484
published_at 2026-04-11T12:55:00Z
4
value 0.00079
scoring_system epss
scoring_elements 0.23446
published_at 2026-04-12T12:55:00Z
5
value 0.00079
scoring_system epss
scoring_elements 0.23391
published_at 2026-04-13T12:55:00Z
6
value 0.00079
scoring_system epss
scoring_elements 0.23408
published_at 2026-04-16T12:55:00Z
7
value 0.00079
scoring_system epss
scoring_elements 0.23561
published_at 2026-04-04T12:55:00Z
8
value 0.00079
scoring_system epss
scoring_elements 0.23343
published_at 2026-04-07T12:55:00Z
9
value 0.00079
scoring_system epss
scoring_elements 0.23416
published_at 2026-04-08T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32365
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32365
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32365
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102191
reference_id 1102191
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1102191
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1577
reference_id 1577
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T14:43:55Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1577
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1792
reference_id 1792
reference_type
scores
0
value 4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-07T14:43:55Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1792
7
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2357656
reference_id 2357656
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2357656
8
reference_url https://access.redhat.com/errata/RHSA-2026:0126
reference_id RHSA-2026:0126
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0126
9
reference_url https://access.redhat.com/errata/RHSA-2026:0128
reference_id RHSA-2026:0128
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0128
10
reference_url https://access.redhat.com/errata/RHSA-2026:0130
reference_id RHSA-2026:0130
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0130
11
reference_url https://access.redhat.com/errata/RHSA-2026:0772
reference_id RHSA-2026:0772
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0772
12
reference_url https://access.redhat.com/errata/RHSA-2026:0773
reference_id RHSA-2026:0773
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0773
13
reference_url https://access.redhat.com/errata/RHSA-2026:0774
reference_id RHSA-2026:0774
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0774
14
reference_url https://access.redhat.com/errata/RHSA-2026:0795
reference_id RHSA-2026:0795
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0795
15
reference_url https://access.redhat.com/errata/RHSA-2026:0796
reference_id RHSA-2026:0796
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0796
16
reference_url https://access.redhat.com/errata/RHSA-2026:0797
reference_id RHSA-2026:0797
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0797
17
reference_url https://access.redhat.com/errata/RHSA-2026:0799
reference_id RHSA-2026:0799
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:0799
18
reference_url https://access.redhat.com/errata/RHSA-2026:1090
reference_id RHSA-2026:1090
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1090
19
reference_url https://access.redhat.com/errata/RHSA-2026:1091
reference_id RHSA-2026:1091
reference_type
scores
url https://access.redhat.com/errata/RHSA-2026:1091
20
reference_url https://usn.ubuntu.com/7426-1/
reference_id USN-7426-1
reference_type
scores
url https://usn.ubuntu.com/7426-1/
21
reference_url https://usn.ubuntu.com/7426-2/
reference_id USN-7426-2
reference_type
scores
url https://usn.ubuntu.com/7426-2/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2025-32365
risk_score 1.5
exploitability 0.5
weighted_severity 3.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d5fj-5prg-97f4
6
url VCID-n1sx-y7xc-kqfb
vulnerability_id VCID-n1sx-y7xc-kqfb
summary poppler: NULL pointer dereference in `FoFiType1C::convertToType1`
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36024.json
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36024.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2020-36024
reference_id
reference_type
scores
0
value 0.00095
scoring_system epss
scoring_elements 0.26431
published_at 2026-04-11T12:55:00Z
1
value 0.00095
scoring_system epss
scoring_elements 0.26481
published_at 2026-04-02T12:55:00Z
2
value 0.00095
scoring_system epss
scoring_elements 0.26308
published_at 2026-04-18T12:55:00Z
3
value 0.00095
scoring_system epss
scoring_elements 0.26385
published_at 2026-04-12T12:55:00Z
4
value 0.00095
scoring_system epss
scoring_elements 0.26327
published_at 2026-04-13T12:55:00Z
5
value 0.00095
scoring_system epss
scoring_elements 0.26335
published_at 2026-04-16T12:55:00Z
6
value 0.00095
scoring_system epss
scoring_elements 0.26524
published_at 2026-04-04T12:55:00Z
7
value 0.00095
scoring_system epss
scoring_elements 0.26305
published_at 2026-04-07T12:55:00Z
8
value 0.00095
scoring_system epss
scoring_elements 0.26373
published_at 2026-04-08T12:55:00Z
9
value 0.00095
scoring_system epss
scoring_elements 0.26423
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2020-36024
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36024
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36024
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1016
reference_id 1016
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:56:32Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1016
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2231520
reference_id 2231520
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2231520
6
reference_url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
reference_id msg00017.html
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-09T17:56:32Z/
url https://lists.debian.org/debian-lts-announce/2023/08/msg00017.html
7
reference_url https://access.redhat.com/errata/RHSA-2024:2979
reference_id RHSA-2024:2979
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:2979
8
reference_url https://usn.ubuntu.com/6299-1/
reference_id USN-6299-1
reference_type
scores
url https://usn.ubuntu.com/6299-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2020-36024
risk_score 2.5
exploitability 0.5
weighted_severity 5.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n1sx-y7xc-kqfb
7
url VCID-nqqu-29qr-wfec
vulnerability_id VCID-nqqu-29qr-wfec
summary poppler: reachable assertion due to a failure in markObject()
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37052.json
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37052.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2022-37052
reference_id
reference_type
scores
0
value 0.00027
scoring_system epss
scoring_elements 0.07427
published_at 2026-04-02T12:55:00Z
1
value 0.00027
scoring_system epss
scoring_elements 0.07418
published_at 2026-04-18T12:55:00Z
2
value 0.00027
scoring_system epss
scoring_elements 0.0752
published_at 2026-04-12T12:55:00Z
3
value 0.00027
scoring_system epss
scoring_elements 0.07507
published_at 2026-04-13T12:55:00Z
4
value 0.00027
scoring_system epss
scoring_elements 0.07429
published_at 2026-04-16T12:55:00Z
5
value 0.00027
scoring_system epss
scoring_elements 0.07469
published_at 2026-04-04T12:55:00Z
6
value 0.00027
scoring_system epss
scoring_elements 0.07451
published_at 2026-04-07T12:55:00Z
7
value 0.00027
scoring_system epss
scoring_elements 0.07509
published_at 2026-04-08T12:55:00Z
8
value 0.00027
scoring_system epss
scoring_elements 0.07532
published_at 2026-04-09T12:55:00Z
9
value 0.00027
scoring_system epss
scoring_elements 0.07534
published_at 2026-04-11T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2022-37052
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37052
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37052
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1278
reference_id 1278
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:06:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1278
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2234530
reference_id 2234530
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2234530
6
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/8677500399fc2548fa816b619580c2c07915a98c
reference_id 8677500399fc2548fa816b619580c2c07915a98c
reference_type
scores
0
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T19:06:03Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/8677500399fc2548fa816b619580c2c07915a98c
7
reference_url https://usn.ubuntu.com/6508-1/
reference_id USN-6508-1
reference_type
scores
url https://usn.ubuntu.com/6508-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2022-37052
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nqqu-29qr-wfec
8
url VCID-tfe8-bq62-3ke4
vulnerability_id VCID-tfe8-bq62-3ke4
summary Poppler: out-of-bounds read
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56378.json
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-56378.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2024-56378
reference_id
reference_type
scores
0
value 0.00305
scoring_system epss
scoring_elements 0.53783
published_at 2026-04-18T12:55:00Z
1
value 0.00305
scoring_system epss
scoring_elements 0.53675
published_at 2026-04-07T12:55:00Z
2
value 0.00305
scoring_system epss
scoring_elements 0.53728
published_at 2026-04-08T12:55:00Z
3
value 0.00305
scoring_system epss
scoring_elements 0.53725
published_at 2026-04-09T12:55:00Z
4
value 0.00305
scoring_system epss
scoring_elements 0.53774
published_at 2026-04-11T12:55:00Z
5
value 0.00305
scoring_system epss
scoring_elements 0.53757
published_at 2026-04-12T12:55:00Z
6
value 0.00305
scoring_system epss
scoring_elements 0.53741
published_at 2026-04-13T12:55:00Z
7
value 0.00305
scoring_system epss
scoring_elements 0.53779
published_at 2026-04-16T12:55:00Z
8
value 0.00305
scoring_system epss
scoring_elements 0.53679
published_at 2026-04-02T12:55:00Z
9
value 0.00305
scoring_system epss
scoring_elements 0.53707
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2024-56378
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56378
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56378
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 4.4
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091322
reference_id 1091322
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1091322
5
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1553
reference_id 1553
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-26T19:27:24Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/issues/1553
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2333794
reference_id 2333794
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2333794
7
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ade9b5ebed44b0c15522c27669ef6cdf93eff84e
reference_id ade9b5ebed44b0c15522c27669ef6cdf93eff84e
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-26T19:27:24Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/commit/ade9b5ebed44b0c15522c27669ef6cdf93eff84e
8
reference_url https://gitlab.freedesktop.org/poppler/poppler/-/blob/30eada0d2bceb42c2d2a87361339063e0b9bea50/CMakeLists.txt#L621
reference_id CMakeLists.txt#L621
reference_type
scores
0
value 4.3
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-26T19:27:24Z/
url https://gitlab.freedesktop.org/poppler/poppler/-/blob/30eada0d2bceb42c2d2a87361339063e0b9bea50/CMakeLists.txt#L621
9
reference_url https://usn.ubuntu.com/7213-1/
reference_id USN-7213-1
reference_type
scores
url https://usn.ubuntu.com/7213-1/
fixed_packages
0
url pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
purl pkg:deb/debian/poppler@22.12.0-2%2Bdeb12u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-48d5-zxmm-r3g4
1
vulnerability VCID-a8zz-dfdm-1uf7
2
vulnerability VCID-anb3-1s96-wbaq
3
vulnerability VCID-ygrf-gq35-fkfd
4
vulnerability VCID-yy6j-1h5z-wbgp
5
vulnerability VCID-yyxy-juya-a3f1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1
aliases CVE-2024-56378
risk_score 2.0
exploitability 0.5
weighted_severity 4.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tfe8-bq62-3ke4
Risk_score3.4
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/poppler@22.12.0-2%252Bdeb12u1