CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31794

MuPDF v1.21.1 was discovered to contain an infinite recursion in the component pdf_mark_list_push. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.4%

CVSS Severity

CVSS v3 Score 5.5

References

https://bugs.ghostscript.com/show_bug.cgi?id=706506
https://gist.github.com/spookhorror/c770d118767b1b0d89fdfe2845169d06
https://git.ghostscript.com/?p=mupdf.git%3Bh=c0015401693b58e2deb5d75c39f27bc1216e47c6
https://bugs.ghostscript.com/show_bug.cgi?id=706506
https://gist.github.com/spookhorror/c770d118767b1b0d89fdfe2845169d06
https://git.ghostscript.com/?p=mupdf.git%3Bh=c0015401693b58e2deb5d75c39f27bc1216e47c6

Products affected by CVE-2023-31794

Artifex » Mupdf » Version: 1.21.1

cpe:2.3:a:artifex:mupdf:1.21.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31794

Products

Pricing

Contact Us