Memory Exhaustion Vulnerability in PyPDF Library from PyPDF Vendor
CVE-2025-55197
Currently unrated
What is CVE-2025-55197?
The PyPDF library, a popular open-source PDF processing tool, is susceptible to a memory exhaustion issue. Attackers can craft malicious PDFs that exploit FlateDecode filters, leading to excessive RAM consumption when these PDFs are processed. Although this vulnerability affects the library versions below 6.0.0, a fix has been implemented in the latest release. Users unable to update can mitigate this risk by integrating the corrective code from pypdf.filters.decompress into their existing filters.