CVE-2018-1000039
HIGH7.8EPSS 0.70%Published: 5/24/2018Modified: 4/28/2026
Also known as:DEBIAN-CVE-2018-1000039
Description
In Artifex MuPDF 1.12.0 and earlier, multiple heap use after free bugs in the PDF parser could allow an attacker to execute arbitrary code, read memory, or cause a denial of service via a crafted file.
Affected packages (1)
- Debian/mupdffrom 0, < 1.13.0+ds1-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |