Metrics
Affected Vendors & Products
| Source | ID | Title |
|---|---|---|
Github GHSA |
GHSA-2rw7-x74f-jg35 | pypdf has a possible infinite loop when loading circular /Prev entries in cross-reference streams |
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Wed, 25 Feb 2026 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Pypdf Project
Pypdf Project pypdf |
|
| CPEs | cpe:2.3:a:pypdf_project:pypdf:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Pypdf Project
Pypdf Project pypdf |
|
| Metrics |
cvssV3_1
|
Wed, 25 Feb 2026 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Py-pdf
Py-pdf pypdf |
|
| Vendors & Products |
Py-pdf
Py-pdf pypdf |
Wed, 25 Feb 2026 03:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | pypdf is a free and open-source pure-python PDF library. Prior to 6.7.2, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires reading the file. This has been fixed in pypdf 6.7.2. As a workaround, one may apply the patch manually. | |
| Title | pypdf has a possible infinite loop when loading circular /Prev entries in cross-reference streams | |
| Weaknesses | CWE-835 | |
| References |
| |
| Metrics |
cvssV4_0
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: GitHub_M
Published:
Updated: 2026-02-25T15:58:33.339Z
Reserved: 2026-02-20T22:02:30.027Z
Link: CVE-2026-27628
No data.
Status : Modified
Published: 2026-02-25T03:16:06.513
Modified: 2026-02-25T17:25:39.427
Link: CVE-2026-27628
No data.
OpenCVE Enrichment
Updated: 2026-02-25T11:34:56Z
Github GHSA