org.apache.pdfbox:pdfbox@2.0.18 vulnerabilities

The Apache PDFBox library is an open source Java tool for working with PDF documents.

Direct Vulnerabilities

Known vulnerabilities in the org.apache.pdfbox:pdfbox package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Denial of Service (DoS)

org.apache.pdfbox:pdfbox is an open source Java tool for working with PDF documents.

Affected versions of this package are vulnerable to Denial of Service (DoS) via a crafted PDF file that may trigger an OutOfMemory exception during parsing.

How to fix Denial of Service (DoS)?

Upgrade org.apache.pdfbox:pdfbox to version 2.0.24 or higher.

[2.0.0,2.0.24)
  • H
Denial of Service (DoS)

org.apache.pdfbox:pdfbox is an open source Java tool for working with PDF documents.

Affected versions of this package are vulnerable to Denial of Service (DoS) via a crafted PDF file that may trigger an infinite loop during parsing.

How to fix Denial of Service (DoS)?

Upgrade org.apache.pdfbox:pdfbox to version 2.0.24 or higher.

[2.0.0,2.0.24)
  • H
Denial of Service (DoS)

org.apache.pdfbox:pdfbox is an open source Java tool for working with PDF documents.

Affected versions of this package are vulnerable to Denial of Service (DoS). A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox version 2.0.22 and prior 2.0.x versions.

How to fix Denial of Service (DoS)?

Upgrade org.apache.pdfbox:pdfbox to version 2.0.23 or higher.

[2.0.0,2.0.23)
  • H
Denial of Service (DoS)

org.apache.pdfbox:pdfbox is an open source Java tool for working with PDF documents.

Affected versions of this package are vulnerable to Denial of Service (DoS). A carefully crafted PDF file can trigger an infinite loop while loading the file.

How to fix Denial of Service (DoS)?

Upgrade org.apache.pdfbox:pdfbox to version 2.0.23 or higher.

[2.0.0,2.0.23)