Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-fct6-695j-t7bs
Vulnerability ID VCID-fct6-695j-t7bs
Aliases CVE-2007-3387
Summary PDFKit and ImageKits are vulnerable to an integer overflow and a stack overflow allowing for the user-assisted execution of arbitrary code.
Status Published
Exploitability 0.5
Weighted Severity 0.1
Risk 0.1
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-190 Integer Overflow or Wraparound
System Score Found at
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
epss 0.08892 https://api.first.org/data/v1/epss?cve=CVE-2007-3387
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3387.json
https://api.first.org/data/v1/epss?cve=CVE-2007-3387
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3387
248194 https://bugzilla.redhat.com/show_bug.cgi?id=248194
435460 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=435460
435462 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=435462
GLSA-200709-12 https://security.gentoo.org/glsa/200709-12
GLSA-200709-17 https://security.gentoo.org/glsa/200709-17
GLSA-200710-08 https://security.gentoo.org/glsa/200710-08
GLSA-200710-20 https://security.gentoo.org/glsa/200710-20
RHSA-2007:0720 https://access.redhat.com/errata/RHSA-2007:0720
RHSA-2007:0729 https://access.redhat.com/errata/RHSA-2007:0729
RHSA-2007:0730 https://access.redhat.com/errata/RHSA-2007:0730
RHSA-2007:0731 https://access.redhat.com/errata/RHSA-2007:0731
RHSA-2007:0732 https://access.redhat.com/errata/RHSA-2007:0732
RHSA-2007:0735 https://access.redhat.com/errata/RHSA-2007:0735
USN-496-1 https://usn.ubuntu.com/496-1/
USN-496-2 https://usn.ubuntu.com/496-2/
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.92529
EPSS Score 0.08892
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:00:47.599815+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/200710-20 38.0.0