CVE-2026-48156 in pypdfالمعلومات

الملخص

بحسب MITRE • 28/05/2026

pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to long runtimes. This requires cross-reference streams with /W [0 0 0] values and large /Size values. This vulnerability is fixed in 6.12.0.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

GitHub M

حجز

21/05/2026

إفشاء

28/05/2026

الاعتدال

تمت الموافقة

إدخال

VDB-366774

CPE

جاهز

CWE

CWE-834 (مؤكد)

CVSS

3.3 (VulDB)

EPSS

0.00012

KEV

لا

النشاطات

منخفض

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-48156
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-48156
CVE Details	https://www.cvedetails.com/cve/CVE-2026-48156/

التالي ▸نظرة عامة ◂ السابق

Do you know our Splunk app?

Download it now for free!