Artifex Security Vulnerabilities (CVEs)
Track 37 security vulnerabilities affecting Artifex products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in the barcode decoding functionality. When processing specially crafted inpu...
Feb 6, 2026A null pointer dereference vulnerability in MuPDF's EPUB rendering function allows attackers to crash the application by providing a malformed EPUB do...
Sep 23, 2025This CVE describes a stack-based buffer overflow vulnerability in Artifex Ghostscript's PDF processing component. Attackers could exploit this by prov...
Sep 22, 2025This CVE describes an integer overflow vulnerability in Artifex Ghostscript's PDF OCR device that leads to heap-based buffer overflow when processing ...
Sep 22, 2025This vulnerability allows remote attackers to cause denial of service in Artifex mupdf by exploiting infinite recursion in the strip_outline() functio...
Aug 4, 2025This vulnerability in Artifex Ghostscript allows PDF passwords to be exposed in cleartext when processing certain PDF documents. It affects systems us...
May 23, 2025This vulnerability in Artifex Ghostscript involves improper handling of overlong UTF-8 encoding in the decode_utf8 function, which could allow attacke...
Apr 26, 2025A buffer overflow vulnerability in Artifex Ghostscript's glyph-to-Unicode conversion function allows attackers to execute arbitrary code or cause deni...
Mar 25, 2025A buffer overflow vulnerability in the BJ10V device driver in Ghostscript allows attackers to execute arbitrary code or cause denial of service. This ...
Mar 25, 2025A buffer overflow vulnerability in Artifex Ghostscript allows attackers to execute arbitrary code or cause denial of service by processing maliciously...
Mar 25, 2025A buffer overflow vulnerability in Artifex Ghostscript's DOCXWRITE/TXTWRITE device allows attackers to execute arbitrary code or cause denial of servi...
Mar 25, 2025A buffer overflow vulnerability in Artifex Ghostscript allows attackers to execute arbitrary code by providing a specially crafted long TTF font name....
Mar 25, 2025A buffer overflow vulnerability in Artifex Ghostscript allows remote attackers to execute arbitrary code by crafting a malicious PDF document with an ...
Mar 25, 2025CVE-2024-46657 is a buffer overflow vulnerability in Artifex Software mupdf's pdfextract tool that allows attackers to cause a Denial of Service (DoS)...
Dec 10, 2024This vulnerability in Artifex Ghostscript allows buffer overflow during PDF XRef stream handling, potentially enabling remote code execution. It affec...
Nov 10, 2024A directory traversal vulnerability in Ghostscript's UTF-8 decoder allows attackers to escape directory restrictions via specially crafted overlong UT...
Nov 10, 2024This vulnerability in Ghostscript allows out-of-bounds memory access in the filenameforall function, which could lead to arbitrary code execution. It ...
Nov 10, 2024This CVE describes a stack-based buffer overflow vulnerability in Artifex Ghostscript when processing CIDFSubstPath and CIDFSubstFont parameters. Atta...
Jul 3, 2024This vulnerability in Ghostscript with Tesseract OCR allows attackers to read arbitrary files and write error messages to arbitrary locations via dire...
Jul 3, 2024This vulnerability in Ghostscript allows path traversal attacks via crafted PostScript documents, enabling unauthorized file access when the current d...
Jul 3, 2024This vulnerability in Ghostscript allows arbitrary code execution by loading a malicious dynamic library specified in a crafted PostScript document. I...
Jul 3, 2024This vulnerability is a stack-based buffer overflow in Artifex Ghostscript's pdfi_apply_filter() function that can be triggered by a malicious PDF fil...
Jul 3, 2024This vulnerability in Artifex Ghostscript allows heap-based buffer overflow when processing PDF passwords containing null bytes. Attackers could poten...
Jul 3, 2024CVE-2024-24259 is a memory leak vulnerability in freeglut library versions through 3.4.0. The vulnerability occurs in the glutAddMenuEntry function an...
Feb 5, 2024This vulnerability in Ghostscript allows attackers to execute arbitrary code or cause denial of service by exploiting out-of-bounds write and use-afte...
Feb 4, 2024A divide-by-zero vulnerability in Artifex MuPDF's pixmap.c allows attackers to cause a floating point exception, potentially crashing the application....
Dec 26, 2023A divide-by-zero vulnerability in Artifex MuPDF's BMP image processing allows attackers to crash the application via specially crafted BMP files. This...
Dec 26, 2023A floating point exception (divide-by-zero) vulnerability exists in Artifex MuPDF's compute_color() function. This could allow attackers to crash the ...
Dec 26, 2023A use-after-free vulnerability in Ghostscript's gdev_prn_open_printer_seekable() function allows remote attackers to crash the application via a dangl...
Dec 6, 2023This vulnerability in Artifex Ghostscript allows remote code execution via specially crafted PostScript documents. Attackers can bypass SAFER restrict...
Sep 18, 2023CVE-2021-33796 is a use-after-free vulnerability in MuJS's regexp source property access that can lead to denial of service. This affects applications...
Jul 7, 2023CVE-2023-36664 is a security bypass vulnerability in Artifex Ghostscript that allows arbitrary command execution through improper permission validatio...
Jun 25, 2023This vulnerability is a buffer overflow in Artifex MuJS's floating-point parsing code that allows attackers to execute arbitrary code or crash applica...
Apr 17, 2023This CVE describes a buffer overflow vulnerability in Artifex Ghostscript's PostScript interpreter that could allow attackers to corrupt internal data...
Mar 31, 2023Artifex Ghostscript through version 9.26 contains a vulnerability in its .completefont handling that could allow arbitrary code execution. This affect...
Apr 25, 2022CVE-2021-45005 is a heap buffer overflow vulnerability in Artifex MuJS v1.1.3 caused by conflicting JumpList handling in nested try/finally statements...
Feb 14, 2022A buffer overflow vulnerability in the jsG_markobject function of mujs JavaScript interpreter allows remote attackers to cause denial of service. This...
Jul 13, 2021Why Monitor Artifex Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 37+ known vulnerabilities affecting Artifex products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Artifex packages in under 60 seconds. No agents required - completely agentless scanning that works across Artifex deployments.
Free vulnerability database: Access detailed information about every Artifex CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Artifex CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
