What is the CVSS score of CVE-2026-10118?

CVE-2026-10118 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Poppler are affected by CVE-2026-10118?

A critical integer overflow vulnerability in Red Hat's Poppler PDF rendering library (CVE-2026-10118, CVSS 7.8) enables arbitrary code execution when users open malicious PDF documents.

Poppler CVE-2026-10118

EUVD-2026-33694 HIGH

Integer Overflow or Wraparound (CWE-190)

2026-06-01 redhat

GHSA-469x-qwp6-693q

RCE Buffer Overflow Denial Of Service Information Disclosure Integer Overflow Red Hat

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Jun 01, 2026 - 17:17 vuln.today

CVE Published

Jun 01, 2026 - 15:33 nvd

HIGH 7.8

DescriptionNVD

A flaw was found in Poppler's Splash backend. A remote attacker could exploit this vulnerability by crafting a malicious PDF file that, when rendered, triggers an integer overflow in the tilingPatternFill function. This overflow leads to an undersized heap memory allocation, allowing a subsequent out-of-bounds write. Successful exploitation could result in arbitrary code execution, information disclosure, or denial of service within the context of the application processing the PDF.

AnalysisAI

Local code execution in Poppler's Splash rendering backend allows attackers to compromise applications that open attacker-supplied PDFs by triggering an integer overflow in tilingPatternFill that produces an undersized heap allocation and a subsequent out-of-bounds write. The flaw affects Poppler as shipped across Red Hat Enterprise Linux 6 through 10 and Red Hat Hardened Images, with impact including arbitrary code execution, information disclosure, or denial of service in the rendering process. …

RemediationAI

24 hours: Complete inventory of all RHEL 6-10 systems running Poppler or applications bundling Poppler; document business processes requiring PDF processing; assess external PDF sources and user opening practices. 7 days: Implement interim controls including email PDF quarantine policies, disable PDF preview features where feasible, and test business continuity impact. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

More from same product – last 7 days

CVE-2026-5241 CRITICAL Act Now

9.6 Jun 03

Remote code execution in Hugging Face Transformers 5.2.0 allows a malicious model repository to bypass the user's explic

CVE-2026-1784 HIGH This Week

8.8 Jun 02

HAProxy configuration injection in Red Hat OpenShift Container Platform 4 allows a low-privileged tenant with permission

CVE-2026-5422 HIGH This Week

8.1 Jun 02

Path traversal in Jupyter Server 2.17.0 allows authenticated users to read and write files in sibling directories outsid

CVE-2026-43958 HIGH This Week

7.8 Jun 01

Stack-based buffer overflow in rrdcached (the caching daemon for rrdtool) allows a local attacker with socket access to

CVE-2026-10517 MEDIUM This Month

5.8 Jun 01

Server-Side Request Forgery in Clair's fetcher component exposes internal network services and cloud metadata endpoints

Vendor StatusVendor

CVE-2026-10118 vulnerability details – vuln.today

Back

Poppler CVE-2026-10118

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

More from same product – last 7 days

Vendor StatusVendor

Share

External POC / Exploit Code