Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-59937

pypdf is a free and open-source pure-python PDF library. Prior to 6.14.0, an attacker can craft a PDF with repeated malformed cross-reference streams that cause pypdf to spend long runtimes recovering broken cross-reference table entries. This issue is fixed in version 6.14.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 26.6%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2026-59937


Contact Us

Shodan ® - All rights reserved