QwikSec

Security Database

CVE

CWE

Training

CVE-2025-46206

Published: Aug 4, 2025

Modified: Aug 5, 2025

PUBLISHED

Description

An issue in Artifex mupdf 1.25.6, 1.25.5 allows a remote attacker to cause a denial of service via an infinite recursion in the `mutool clean` utility. When processing a crafted PDF file containing cyclic /Next references in the outline structure, the `strip_outline()` function enters infinite recursion

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://artifex.com

http://mupdf.com

https://github.com/Landw-hub/CVE-2025-46206

https://bugs.ghostscript.com/show_bug.cgi?id=708521

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/mupdf.git/commit/?id=0ec7e4d2201bb6df217e01c17396d36297abf9ac

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.