Vulnerability in Artifex Software Inc. *Pymupdf* Mupdf
CVE-2026-3308
An integer overflow vulnerability in 'pdf-image.c' in Artifex's MuPDF version 1.27.0 allows an attacker to maliciously craft a PDF that can trigger an integer overflow within the 'pdf_load_image_imp' function. This allows a heap out-of-bou…
EPSS: 0.000 (5.7th percentile) — read the EPSS interpretation.
Affected products
- Artifex Software Inc. *Pymupdf* Mupdf — versions 0