threat
engine
.sh
Back
·
··:··
Home
/
Product
/
pypdf project pypdf
Product
pypdf project pypdf
25 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-41314
< 6.10.2
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2
6.5
MEDIUM
CVE-2026-41313
< 6.10.2
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2
6.5
MEDIUM
CVE-2026-41312
< 6.10.2
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2
6.5
MEDIUM
CVE-2026-41168
< 6.10.1
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1
5.3
MEDIUM
CVE-2026-40260
< 6.10.0
pypdf is a free and open-source pure-python PDF library. In versions prior to 6.10.0, manipulated XMP metadata entity declarations
5.3
MEDIUM
CVE-2026-33699
< 6.9.2
pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attacker can cra
7.5
HIGH
CVE-2026-33123
< 6.9.1
pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.1 allow an attacker to craft a malicious PDF which
6.5
MEDIUM
CVE-2026-31826
< 6.8.0
pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF w
5.5
MEDIUM
CVE-2026-28804
< 6.7.5
pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5, an attacker who uses this vulnerability can craft
5.3
MEDIUM
CVE-2026-28351
< 6.7.4
pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.4, an attacker who uses this vulnerability can craft
5.3
MEDIUM
CVE-2026-27888
< 6.7.3
pypdf is a free and open-source pure-python PDF library. Prior to 6.7.3, an attacker who uses this vulnerability can craft a PDF w
7.5
HIGH
CVE-2026-27628
< 6.7.2
pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this vulnerability can craft a PDF w
7.5
HIGH
CVE-2026-27026
< 6.7.1
pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF w
5.5
MEDIUM
CVE-2026-27025
< 6.7.1
pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF w
5.5
MEDIUM
CVE-2026-27024
< 6.7.1
pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF w
5.5
MEDIUM
CVE-2026-24688
< 6.6.2
pypdf is a free and open-source pure-python PDF library. An attacker who uses an infinite loop vulnerability that is present in ve
4.3
MEDIUM
CVE-2026-22691
< 6.6.0
pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for malformed st
5.3
MEDIUM
CVE-2026-22690
< 6.6.0
pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for missing /Roo
5.3
MEDIUM
CVE-2025-62708
< 6.1.3
pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft
7.5
HIGH
CVE-2025-62707
< 6.1.3
pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft
7.5
HIGH
CVE-2025-55197
< 6.0.0
pypdf is a free and open-source pure-python PDF library. Prior to version 6.0.0, an attacker can craft a PDF which leads to the RA
7.5
HIGH
CVE-2023-46250
>= 3.7.0 and < 3.17.0
pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.
5.1
MEDIUM
CVE-2023-36810
<= 1.27.8
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker w
6.2
MEDIUM
CVE-2023-36807
all versions
pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.
6.2
MEDIUM
CVE-2023-36464
< 3.9.0
pypdf is an open source, pure-python PDF library. In affected versions an attacker may craft a PDF which leads to an infinite loop
6.2
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin