Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-26540
An issue exists in Foxit Reader and PhantomPDF prior to 4.1 on macOS. Because the Hardened Runtime protection mechanism is not applied to code signing, code injection (or an information leak) can occur.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2020-10893
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific f...
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.5
CVSSv3
CVE-2019-20818
An issue exists in Foxit Reader and PhantomPDF prior to 9.7. It allows memory consumption because data is created for each page of an application level.
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2018-14244
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
8.1
CVSSv3
CVE-2018-20316
Foxit Reader prior to 9.5, and PhantomPDF prior to 8.3.10 and 9.x prior to 9.5, has a proxyDoAction race condition that can cause a stack-based buffer overflow or an out-of-bounds read, a different issue than CVE-2018-20310 because of a different opcode.
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.5
CVSSv3
CVE-2016-8876
Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF prior to 8.1 on Windows, when the gflags app is enabled, allows remote malicious users to execute arbitrary code via a crafted TIFF image embedded in the XFA stream in a PDF document, aka "Read Access Violation ...
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2016-8877
Heap buffer overflow (Out-of-Bounds write) vulnerability in Foxit Reader and PhantomPDF prior to 8.1 on Windows allows remote malicious users to execute arbitrary code via a crafted JPEG2000 image embedded in a PDF document, aka a "corrupted suffix pattern" issue.
Foxitsoftware Phantompdf
Foxitsoftware Reader
6.5
CVSSv3
CVE-2016-8879
The thumbnail shell extension plugin (FoxitThumbnailHndlr_x86.dll) in Foxit Reader and PhantomPDF prior to 8.1 on Windows allows remote malicious users to cause a denial of service (out-of-bounds write and application crash) via a crafted JPEG2000 image embedded in a PDF document...
Foxitsoftware Reader
Foxitsoftware Phantompdf
8.8
CVSSv3
CVE-2018-17692
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific ...
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2018-17693
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific ...
Foxitsoftware Reader
Foxitsoftware Phantompdf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »