CVE-2026-4407

Name of the Vulnerable Software and Affected Versions Xpdf versions prior to 4.07

Description An out-of-bounds array write issue exists in Xpdf due to insufficient validation of the "N" field within ICCBased color spaces. This can lead to a crash or potentially allow for arbitrary code execution.

Recommendations Update to version 4.07 or later.