CVE-2025-34106
PDF Shaper v3.5/3.6 Buffer Overflow via Convert to Image Feature
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
A buffer overflow vulnerability exists in PDF Shaper versions 3.5 and 3.6 when converting a crafted PDF file to an image using the 'Convert PDF to Image' functionality. An attacker can exploit this vulnerability by tricking a user into opening a maliciously crafted PDF file, leading to arbitrary code execution under the context of the user. This vulnerability has been verified on Windows XP, 7, 8, and 10 platforms using the PDFTools.exe component.
| CWE | CWE-119 CWE-120 |
| Vendor | burnaware |
| Product | pdf shaper |
| Published | Jul 15, 2025 |
| Last Updated | Apr 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for burnaware pdf shaper
Be the first to know when new unknown vulnerabilities affecting burnaware pdf shaper are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Burnaware / PDF Shaper
3.5 โค 3.6
References
raw.githubusercontent.com: https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/fileformat/shaper_pdf_bof.rb exploit-db.com: https://www.exploit-db.com/exploits/37760 pdfshaper.com: https://www.pdfshaper.com/ vulners.com: https://vulners.com/vulnerlab/VULNERABLE:1579 vulncheck.com: https://www.vulncheck.com/advisories/pdf-shaper-buffer-overflow-via-convert-to-image-feature
Credits
metacom