Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxitsoftware phantompdf vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-17607
Foxit PhantomPDF and Reader prior to 9.3 allow remote malicious users to execute arbitrary code or cause a denial of service (use-after-free) because properties of Annotation objects are mishandled. This relates to one of five distinct types of Annotation objects.
Foxitsoftware Reader
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-17610
Foxit PhantomPDF and Reader prior to 9.3 allow remote malicious users to execute arbitrary code or cause a denial of service (use-after-free) because properties of Annotation objects are mishandled. This relates to one of five distinct types of Annotation objects.
Foxitsoftware Reader
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-17611
Foxit PhantomPDF and Reader prior to 9.3 allow remote malicious users to execute arbitrary code or cause a denial of service (use-after-free) because properties of Annotation objects are mishandled. This relates to one of five distinct types of Annotation objects.
Foxitsoftware Reader
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-17609
Foxit PhantomPDF and Reader prior to 9.3 allow remote malicious users to execute arbitrary code or cause a denial of service (use-after-free) because properties of Annotation objects are mishandled. This relates to one of five distinct types of Annotation objects.
Foxitsoftware Phantompdf
Foxitsoftware Reader
9.8
CVSSv3
CVE-2018-14442
Foxit Reader prior to 9.2 and PhantomPDF prior to 9.2 have a Use-After-Free that leads to Remote Code Execution, aka V-88f4smlocs.
Foxitsoftware Phantompdf
Foxitsoftware Foxit Reader
1 Github repository
9.1
CVSSv3
CVE-2021-38570
An issue exists in Foxit Reader and PhantomPDF prior to 10.1.4. It allows malicious users to delete arbitrary files (during uninstallation) via a symlink.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
9.1
CVSSv3
CVE-2021-33794
Foxit Reader prior to 10.1.4 and PhantomPDF prior to 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
8.8
CVSSv3
CVE-2020-12248
In Foxit Reader and PhantomPDF prior to 10.0.1, and PhantomPDF prior to 9.7.3, attackers can execute arbitrary code via a heap-based buffer overflow because dirty image-resource data is mishandled.
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2020-10890
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific f...
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2020-10892
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific f...
Foxitsoftware Phantompdf
Foxitsoftware Reader
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »