CVE-2026-7233

Summary

A vulnerability was determined in Artifex MuPDF up to 1.28.0. The impacted element is the function fz_subset_cff_for_gids of the file subset-cff.c of the component CFF Index Handler. This manipulation causes out-of-bounds read. The attack can only be executed locally. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through a bug report but has not responded yet.

Affected Software

VendorProductVersion RangeStatus
ArtifexMuPDF1.0affected
ArtifexMuPDF1.1affected
ArtifexMuPDF1.2affected
ArtifexMuPDF1.3affected
ArtifexMuPDF1.4affected
ArtifexMuPDF1.5affected
ArtifexMuPDF1.6affected
ArtifexMuPDF1.7affected
ArtifexMuPDF1.8affected
ArtifexMuPDF1.9affected
ArtifexMuPDF1.10affected
ArtifexMuPDF1.11affected
ArtifexMuPDF1.12affected
ArtifexMuPDF1.13affected
ArtifexMuPDF1.14affected
ArtifexMuPDF1.15affected
ArtifexMuPDF1.16affected
ArtifexMuPDF1.17affected
ArtifexMuPDF1.18affected
ArtifexMuPDF1.19affected
ArtifexMuPDF1.20affected
ArtifexMuPDF1.21affected
ArtifexMuPDF1.22affected
ArtifexMuPDF1.23affected
ArtifexMuPDF1.24affected
ArtifexMuPDF1.25affected
ArtifexMuPDF1.26affected
ArtifexMuPDF1.27affected
ArtifexMuPDF1.28.0affected

Weaknesses

  • CWE-125: Out-of-Bounds Read
  • CWE-119: Memory Corruption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

Additional References

References