Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Kofax — Vulnerabilities & Security Advisories 103

Browse all 103 CVE security advisories affecting Kofax. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Kofax provides enterprise software solutions primarily focused on intelligent automation, document capture, and process optimization for industries such as finance, healthcare, and insurance. Historically, its product suite has been associated with a significant number of vulnerabilities, including Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation flaws. These issues often stem from improper input validation and insufficient access controls within its web-based interfaces and backend services. While specific major public breaches directly attributed to Kofax are less documented compared to widespread data leaks, the high volume of Common Vulnerabilities and Exposures (CVEs) indicates persistent security hygiene challenges in legacy components. Organizations utilizing these platforms must prioritize regular patching and strict network segmentation to mitigate risks arising from these known software defects, ensuring that automated workflows do not become entry points for unauthorized system access or data exfiltration.

Top products by Kofax: Power PDF Saperion Web Client Capture
CVE IDTitleCVSSSeverityPublished
CVE-2023-44433 Kofax Power PDF AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-44432 Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-05-03
CVE-2023-42127 Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-05-03
CVE-2023-42100 Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-42039 Kofax Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-122 7.8 -2024-05-03
CVE-2023-42037 Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability — Power PDFCWE-119 7.8 -2024-05-03
CVE-2023-42038 Kofax Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-122 7.8 -2024-05-03
CVE-2023-42036 Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability — Power PDFCWE-119 7.8 -2024-05-03
CVE-2023-38094 Kofax Power PDF replacePages Stack-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-121 7.8 -2024-05-03
CVE-2023-38093 Kofax Power PDF saveAs Stack-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-121 7.8 -2024-05-03
CVE-2023-38092 Kofax Power PDF importDataObject Stack-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-121 7.8 -2024-05-03
CVE-2023-38091 Kofax Power PDF response Type Confusion Remote Code Execution Vulnerability — Power PDFCWE-843 7.8 -2024-05-03
CVE-2023-38090 Kofax Power PDF popUpMenu Heap-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-122 7.8 -2024-05-03
CVE-2023-38089 Kofax Power PDF clearInterval Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-05-03
CVE-2023-38088 Kofax Power PDF printf Uninitialized Variable Remote Code Execution Vulnerability — Power PDFCWE-457 7.8 -2024-05-03
CVE-2023-38086 Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-38087 Kofax Power PDF clearTimeOut Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-05-03
CVE-2023-38085 Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-38084 Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability — Power PDFCWE-119 7.8 -2024-05-03
CVE-2023-38083 Kofax Power PDF JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-05-03
CVE-2023-38082 Kofax Power PDF GIF File Parsing Memory Corruption Remote Code Execution Vulnerability — Power PDFCWE-119 7.8 -2024-05-03
CVE-2023-38081 Kofax Power PDF JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-05-03
CVE-2023-38080 Kofax Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — Power PDFCWE-122 7.8 -2024-05-03
CVE-2023-38079 Kofax Power PDF JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — Power PDFCWE-787 7.8 -2024-05-03
CVE-2023-38078 Kofax Power PDF U3D File Parsing Use-After-Free Information Disclosure Vulnerability — Power PDFCWE-416 5.5 -2024-05-03
CVE-2023-38077 Kofax Power PDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-37359 Kofax Power PDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-37358 Kofax Power PDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-37357 Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03
CVE-2023-37356 Kofax Power PDF GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Power PDFCWE-125 5.5 -2024-05-03

This page lists every published CVE security advisory associated with Kofax. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.