Pypdf2
This hub aggregates every CVE we track for Pypdf2, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
9
CVEs tracked
0
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM7HIGH2
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
1
2
1
0
0
0
2024-072026-06
Latest CVEs
The 9 most recently published vulnerabilities affecting Pypdf2.
- CVE-2026-28804pypdf: Inefficient decoding of ASCIIHexDecode streams5.3
- CVE-2026-27628pypdf has a possible infinite loop when loading circular /Prev entries in cross-reference streams7.5
- CVE-2026-27025pypdf has possible long runtimes/large memory usage for large /ToUnicode streams5.5
- CVE-2026-22691pypdf has possible long runtimes for malformed startxref5.3
- CVE-2025-62707pypdf affected by possible infinite loop when reading DCT inline images without EOF marker7.5
- CVE-2023-36810Quadratic runtime with malformed PDF missing xref marker in pypdf6.2
- CVE-2023-36807Infinite Loop when reading malformed objects in pypdf6.2
- CVE-2023-36464Infinite Loop when a comment isn't followed by a character in pypdf6.2
- CVE-2022-24859Manipulated inline images can cause Infinite Loop in PyPDF26.2
Product normalization is registry-driven with AI assist and human review. How it works