Description
PDFunite 0.41.0 contains a buffer overflow vulnerability that allows local attackers to crash the application by processing malformed PDF files during merge operations. Attackers can trigger a segmentation fault in the XRef::getEntry function within libpoppler by providing a specially crafted PDF file to the pdfunite utility.
Published: 2026-04-29
Score: 6.9 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is a buffer overflow in PDFunite 0.41.0 that causes a segmentation fault when processing a specially crafted PDF. The overflow occurs in the XRef::getEntry function of libpoppler, resulting in the application crashing and potentially denying service to users relying on PDF merging. This flaw is classified as CWE-120.

Affected Systems

The affected product is PDFunite, part of the poppler-utils package. The vulnerable release is 0.41.0. Users running this version or older should be aware that the flaw exists in the PDF merging utility.

Risk and Exploitability

The CVSS score of 6.9 indicates a moderate to high severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, suggesting a limited but still significant exploitation potential. The attack vector is local: an attacker who can supply a malicious PDF file to the pdfunite utility can induce a crash. No remote execution or data exfiltration is described, so the primary impact is denial of service for local users or processes. Given the lack of a public exploit and the local nature of the attack, the risk is moderate but warrants timely remediation.

Generated by OpenCVE AI on April 30, 2026 at 03:49 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update poppler-utils to a version that contains the PDFunite fix (such as 0.57.0 or later).
  • Restrict the use of pdfunite to trusted users and prevent untrusted users from feeding it malicious PDF files.
  • Monitor system logs for pdfunite crashes or segmentation faults and investigate any unexpected failures promptly.

Generated by OpenCVE AI on April 30, 2026 at 03:49 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 05 May 2026 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Canonical
Canonical pdfunite
CPEs cpe:2.3:a:canonical:pdfunite:0.41.0:*:*:*:*:*:*:*
Vendors & Products Canonical
Canonical pdfunite

Thu, 30 Apr 2026 16:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 30 Apr 2026 08:45:00 +0000

Type Values Removed Values Added
First Time appeared Poppler-utils
Poppler-utils pdfunite
Vendors & Products Poppler-utils
Poppler-utils pdfunite

Wed, 29 Apr 2026 20:00:00 +0000

Type Values Removed Values Added
Description PDFunite 0.41.0 contains a buffer overflow vulnerability that allows local attackers to crash the application by processing malformed PDF files during merge operations. Attackers can trigger a segmentation fault in the XRef::getEntry function within libpoppler by providing a specially crafted PDF file to the pdfunite utility.
Title PDFunite 0.41.0 Buffer Overflow via Malformed PDF
Weaknesses CWE-120
References
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}

Subscriptions

Canonical Pdfunite
Poppler-utils Pdfunite
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-30T15:22:38.658Z

Reserved: 2026-04-29T12:10:08.610Z

Link: CVE-2018-25306

cve-icon Vulnrichment

Updated: 2026-04-30T13:11:20.086Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-29T20:16:26.043

Modified: 2026-05-05T14:22:22.727

Link: CVE-2018-25306

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-30T08:20:45Z

Weaknesses