216.73.217.64

CVE-2026-4407

· Published 18/03/2026 22:16 · Modified 19/03/2026 13:25

Labels: CVE-2026-4407 2026-03-18CVE-2026-4407CWE-20[email protected]

Essential information

Published
18/03/2026 22:16
Modified
19/03/2026 13:25
Author
Creator
CVSS
2.1 LOW (v3) 2.1 LOW (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
xpdf / xpdf cpe:2.3:a:xpdf:xpdf:4.06:*:*:*:*:*:*:*
xpdf / xpdf cpe:2.3:a:xpdf:xpdf:*:*:*:*:*:*:*:*

References