CVE-2018-1000039

Severity CVSS v4.0:
Pending analysis
Type:
CWE-416 Use After Free
Publication date:
24/05/2018
Last modified:
15/07/2024

Description

In Artifex MuPDF 1.12.0 and earlier, multiple heap use after free bugs in the PDF parser could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a crafted file.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:artifex:mupdf:*:*:*:*:*:*:*:* 1.12.0 (including)