CVE-2018-9918

EPSS 0.40% · P61 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-9918

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

libqpdf.a in QPDF through 8.0.2 mishandles certain "expected dictionary key but found non-name object" cases, allowing remote attackers to cause a denial of service (stack exhaustion), related to the QPDFObjectHandle and QPDF_Dictionary classes, because nesting in direct objects is not restricted.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

QPDF 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

QPDF是一个能够对PDF进行结构化的命令行程序。该程序可以加密PDF文件，分析或更改PDF文件的内部结构。 QPDF 8.0.2及之前版本中的libqpdf.a文件存在安全漏洞。远程攻击者可利用该漏洞造成拒绝服务（栈耗尽）。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2018-9918

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2018-9918

请登录查看更多情报信息。

https://github.com/qpdf/qpdf/commit/b4d6cf6836ce025ba1811b7bbec52680c7204223x_refsource_MISC
https://github.com/qpdf/qpdf/issues/202x_refsource_MISC
https://usn.ubuntu.com/3638-1/vendor-advisoryx_refsource_UBUNTU
https://nvd.nist.gov/vuln/detail/CVE-2018-9918

Same Patch Batch · n/a · 2018-04-10 · 34 CVEs total

CVE-2018-9922		idreamsoft iCMS 安全漏洞
CVE-2014-3114		WordPress EZPZ One Click Backup插件安全漏洞
CVE-2014-3999		Horde Horde_Ldap库安全漏洞
CVE-2015-0172		IBM Security SiteProtector System 安全漏洞
CVE-2015-1957		IBM WebSphere MQ 安全漏洞
CVE-2017-14323		Onethink Ueditor 安全漏洞
CVE-2017-14611		Cockpit 安全漏洞
CVE-2017-18100		Atlassian Jira agile wallboard gadget 安全漏洞
CVE-2018-9934		MetInfo 安全漏洞
CVE-2014-2078		Open-Xchange AppSuite 信息泄露漏洞
CVE-2018-9923		idreamsoft iCMS 跨站请求伪造漏洞
CVE-2018-9924		idreamsoft iCMS SQL注入漏洞
CVE-2018-9925		idreamsoft iCMS 跨站脚本漏洞
CVE-2018-9926		WUZHI CMS 跨站请求伪造漏洞
CVE-2018-9927		WUZHI CMS 跨站请求伪造漏洞
CVE-2018-9928		MetInfo 跨站脚本漏洞
CVE-2018-9840		Open Whisper Signal app for iOS 安全漏洞
CVE-2018-9995		TBK DVR4104和DVR4216 安全漏洞
CVE-2014-2073		Dassault Systemes CATIA V5-6R2013 缓存区错误漏洞
CVE-2014-1946		OpenDocMan 安全漏洞

Showing top 20 of 34 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2018-9918

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2018-9918

I. Basic Information for CVE-2018-9918

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2018-9918

III. Intelligence Information for CVE-2018-9918

Same Patch Batch · n/a · 2018-04-10 · 34 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2018-9918

Leave a comment