CVE-2026-3308

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

An integer overflow vulnerability in 'pdf-image.c' in Artifex's MuPDF version 1.27.0 allows an attacker to maliciously craft a PDF that can trigger an integer overflow within the 'pdf load image imp' function. This allows a heap out-of-bounds write that could be exploited for arbitrary code execution.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2026-3308

Affected Products

Mupdf

CVE-2026-3308

Related Identifiers

Affected Products

References · 4