Search for vulnerabilities
Vulnerability details: VCID-1gb1-94wr-aaaf
Vulnerability ID VCID-1gb1-94wr-aaaf
Aliases CVE-2022-38928
Summary XPDF 4.04 is vulnerable to Null Pointer Dereference in FoFiType1C.cc:2393.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-476 NULL Pointer Dereference
System Score Found at
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00081 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00093 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00096 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00096 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00096 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00096 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00099 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00099 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
epss 0.00159 https://api.first.org/data/v1/epss?cve=CVE-2022-38928
cvssv3.1 7.8 https://forum.xpdfreader.com/viewtopic.php?f=3&t=42325&sid=7b08ba9a518a99ce3c5ff40e53fc6421
ssvc Track https://forum.xpdfreader.com/viewtopic.php?f=3&t=42325&sid=7b08ba9a518a99ce3c5ff40e53fc6421
cvssv3 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38928
cvssv3.1 7.8 https://nvd.nist.gov/vuln/detail/CVE-2022-38928
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2022-38928
https://forum.xpdfreader.com/viewtopic.php?f=3&t=42325&sid=7b08ba9a518a99ce3c5ff40e53fc6421
cpe:2.3:a:xpdfreader:xpdf:4.04:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xpdfreader:xpdf:4.04:*:*:*:*:*:*:*
CVE-2022-38928 https://nvd.nist.gov/vuln/detail/CVE-2022-38928
GLSA-202409-25 https://security.gentoo.org/glsa/202409-25
No exploits are available.
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://forum.xpdfreader.com/viewtopic.php?f=3&t=42325&sid=7b08ba9a518a99ce3c5ff40e53fc6421
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-27T15:25:03Z/ Found at https://forum.xpdfreader.com/viewtopic.php?f=3&t=42325&sid=7b08ba9a518a99ce3c5ff40e53fc6421
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2022-38928
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2022-38928
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.35711
EPSS Score 0.00081
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.