CVE-2025-3154

Vulnerability Description

Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid VerticesPerRow value in a PDF shading dictionary.

Related Weaknesses (CWE)

CWE-787

References

https://www.xpdfreader.com/security-bug/CVE-2025-3154.html

FAQ

What is CVE-2025-3154?

CVE-2025-3154 is a documented vulnerability. Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid VerticesPerRow value in a PDF shading dictionary.

How severe is CVE-2025-3154?

CVSS scoring is not yet available for CVE-2025-3154. Check NVD for updates.

Is there a patch for CVE-2025-3154?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.