Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-20823
An issue exists in Foxit PhantomPDF prior to 8.3.11. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field APs.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20824
An issue exists in Foxit PhantomPDF prior to 8.3.11. It has a NULL pointer dereference via FXSYS_wcslen in an Epub file.
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2018-21241
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has an untrusted search path that allows a DLL to execute remote code.
Foxitsoftware Phantompdf
5.3
CVSSv3
CVE-2018-21237
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows NTLM credential theft via a GoToE or GoToR action.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2018-21238
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-21242
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows Remote Code Execution via a GoToE or GoToR action.
Foxitsoftware Phantompdf
6.5
CVSSv3
CVE-2018-21243
An issue exists in Foxit PhantomPDF prior to 8.3.6. It has COM object mishandling when Microsoft Word is used.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-21244
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka FG-VD-18-029.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14207
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling the clone function due to an endless loop resulting from confusing relationships between a child and parent object (caused by an append error).
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14208
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to a NULL pointer dereference and crash when getting a PDF object from a document, or parsing a certain portfolio that contains a null dictionary.
Foxitsoftware Phantompdf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »