CVE-2022-38171

HIGH

Security Bulletin: Vulnerabilities in poppler affects IBM Netezza Appliance

Details

CVSS v3: 7.8
NVD published: 2022-08-22 19:15:11
EPSS: 0.1% probability · 28.8th percentile — 2026-04-17
Affected versions: cpe:2.3:a:xpdfreader:xpdf:4.04:*:*:*:*:*:*:* cpe:2.3:a:freedesktop:poppler:*:*:*:*:*:*:*:*
Summary: Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2021-30860 (Apple CoreGraphics).
Remediation: Not available in our cache.
Exploit info: Not available in our cache.

TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.

Subscribe — free email digest or paid plan

Information is aggregated from multiple authoritative sources for convenience; verify with NVD and vendors before operational decisions.