CVE-2026-48155
EUVD-2026-3291428.05.2026, 16:16
pypdf is a free and open-source pure-python PDF library. Prior to 6.12.0, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires extracting text in layout mode with large character offsets. This vulnerability is fixed in 6.12.0.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| pypdf_project | pypdf | 𝑥 < 6.12.0 |
𝑥
= Vulnerable software versions