Every CVE whose affected-product data names Pypdf Project Pypdf, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (34)
CVE-2026-33699 — CVSS 7.5 (high): pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attacker can craft a PDF…
CVE-2026-27888 — CVSS 7.5 (high): pypdf is a free and open-source pure-python PDF library. Prior to 6.7.3, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-27628 — CVSS 7.5 (high): pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this vulnerability can craft a PDF which…
CVE-2025-55197 — CVSS 7.5 (high): pypdf is a free and open-source pure-python PDF library. Prior to version 6.0.0, an attacker can craft a PDF which leads to the RAM being…
CVE-2025-62707 — CVSS 7.5 (high): pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft a PDF…
CVE-2025-62708 — CVSS 7.5 (high): pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft a PDF…
CVE-2026-33123 — CVSS 6.5 (medium): pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.1 allow an attacker to craft a malicious PDF which leads to…
CVE-2026-41314 — CVSS 6.5 (medium): pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft…
CVE-2026-57204 — CVSS 6.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.13.3, a maliciously crafted PDF can cause DoS. An attacker who uses…
CVE-2026-41313 — CVSS 6.5 (medium): pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft…
CVE-2026-41312 — CVSS 6.5 (medium): pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.2 can craft…
CVE-2023-36464 — CVSS 6.2 (medium): pypdf is an open source, pure-python PDF library. In affected versions an attacker may craft a PDF which leads to an infinite loop if…
CVE-2023-36807 — CVSS 6.2 (medium): pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. In version 2.10.5 an…
CVE-2023-36810 — CVSS 6.2 (medium): pypdf is a pure-python PDF library capable of splitting, merging, cropping, and transforming the pages of PDF files. An attacker who uses…
CVE-2026-27026 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-48155 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-54531 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-48735 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.12.1, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-54530 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.13.0, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-49461 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.12.2, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-31826 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.8.0, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-27025 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-54651 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.13.1, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-27024 — CVSS 5.5 (medium): pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-22690 — CVSS 5.3 (medium): pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for missing /Root object…
CVE-2026-28351 — CVSS 5.3 (medium): pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.4, an attacker who uses this vulnerability can craft a PDF…
CVE-2026-28804 — CVSS 5.3 (medium): pypdf is a free and open-source pure-python PDF library. Prior to version 6.7.5, an attacker who uses this vulnerability can craft a PDF…
CVE-2026-40260 — CVSS 5.3 (medium): pypdf is a free and open-source pure-python PDF library. In versions prior to 6.10.0, manipulated XMP metadata entity declarations can…
CVE-2026-41168 — CVSS 5.3 (medium): pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft…
CVE-2026-22691 — CVSS 5.3 (medium): pypdf is a free and open-source pure-python PDF library. Prior to version 6.6.0, pypdf has possible long runtimes for malformed startxref…
CVE-2023-46250 — CVSS 5.1 (medium): pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions 3.7.0 through 3.16.4 can…
CVE-2026-24688 — CVSS 4.3 (medium): pypdf is a free and open-source pure-python PDF library. An attacker who uses an infinite loop vulnerability that is present in versions…
CVE-2026-49460 — CVSS 3.3 (low): pypdf is a free and open-source pure-python PDF library. Prior to 6.12.2, an attacker who uses this vulnerability can craft a PDF which…
CVE-2026-48156 — CVSS 3.3 (low): pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which…