Vulnerabilities in py-pdf
35 resultsCVE-2022-24859MEDIUMManipulated inline images can cause Infinite Loop in PyPDF2EPSS 1.3%CVE-2023-36810MEDIUMQuadratic runtime with malformed PDF missing xref marker in pypdfEPSS 0.6%CVE-2023-36807MEDIUMInfinite Loop when reading malformed objects in pypdfEPSS 0.5%CVE-2026-33699MEDIUMpypdf: Possible infinite loop during recovery attempts in DictionaryObject.read_from_streamEPSS 0.5%CVE-2026-28351MEDIUMManipulated RunLengthDecode streams can exhaust RAMEPSS 0.4%CVE-2026-40260MEDIUMpypdf: Manipulated XMP metadata entity declarations can exhaust RAMEPSS 0.4%CVE-2025-55197MEDIUMpypdf's Manipulated FlateDecode streams can exhaust RAMEPSS 0.4%CVE-2025-62707MEDIUMpypdf affected by possible infinite loop when reading DCT inline images without EOF markerEPSS 0.4%CVE-2025-62708MEDIUMpypdf manipulated LZWDecode streams can exhaust RAMEPSS 0.4%CVE-2026-28804MEDIUMpypdf: Inefficient decoding of ASCIIHexDecode streamsEPSS 0.4%CVE-2026-22690LOWpypdf has possible long runtimes for missing /Root object with large /Size valuesEPSS 0.4%CVE-2026-22691LOWpypdf has possible long runtimes for malformed startxrefEPSS 0.4%CVE-2026-24688MEDIUMpypdf has possible Infinite Loop when processing outlines/bookmarksEPSS 0.4%CVE-2026-33123MEDIUMpypdf has inefficient decoding of array-based streamsEPSS 0.3%CVE-2026-27888MEDIUMpypdf: Manipulated FlateDecode XFA streams can exhaust RAMEPSS 0.3%CVE-2026-27628LOWpypdf has a possible infinite loop when loading circular /Prev entries in cross-reference streamsEPSS 0.3%CVE-2023-36464MEDIUMInfinite Loop when a comment isn't followed by a character in pypdfEPSS 0.3%CVE-2025-66019MEDIUMpypdf manipulated LZWDecode streams can exhaust RAMEPSS 0.3%CVE-2026-41168MEDIUMpypdf has possible long runtimes for wrong size values in cross-reference and object streamsEPSS 0.3%CVE-2023-46250MEDIUMpypdf possible Infinite Loop when PdfWriter(clone_from) is used with a PDFEPSS 0.2%