Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxitsoftware phantompdf vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-20315
Foxit Reader prior to 9.5, and PhantomPDF prior to 8.3.10 and 9.x prior to 9.5, has a race condition that can cause a stack-based buffer overflow or an out-of-bounds read.
Foxitsoftware Phantompdf
Foxitsoftware Reader
5
CVSSv2
CVE-2020-13803
An issue exists in Foxit PhantomPDF Mac and Foxit Reader for Mac prior to 4.0. It allows signature validation bypass via a modified file or a file with non-standard signatures.
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.5
CVSSv2
CVE-2019-20827
An issue exists in Foxit PhantomPDF Mac 3.3 and Foxit Reader for Mac prior to 3.3. It allows stack consumption because of interaction between ICC-Based color space and Alternate color space.
Foxitsoftware Reader
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2019-20836
An issue exists in Foxit Reader and PhantomPDF prior to 9.5. It has mishandling of cloud credentials, as demonstrated by Google Drive.
Foxitsoftware Phantompdf
Foxitsoftware Reader
5
CVSSv2
CVE-2020-13807
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.2. It has circular reference mishandling that causes a loop.
Foxitsoftware Reader
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2020-13815
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.1. It allows stack consumption via a loop of an indirect object reference.
Foxitsoftware Reader
Foxitsoftware Phantompdf
6.8
CVSSv2
CVE-2020-12248
In Foxit Reader and PhantomPDF prior to 10.0.1, and PhantomPDF prior to 9.7.3, attackers can execute arbitrary code via a heap-based buffer overflow because dirty image-resource data is mishandled.
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.5
CVSSv2
CVE-2020-13814
An issue exists in Foxit Reader and PhantomPDF prior to 9.7.1. It has a use-after-free via a document that lacks a dictionary.
Foxitsoftware Reader
Foxitsoftware Phantompdf
4.3
CVSSv2
CVE-2016-8875
The ConvertToPDF plugin in Foxit Reader and PhantomPDF prior to 8.1 on Windows, when the gflags app is enabled, allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image, aka "Data from Faulting Address is ...
Foxitsoftware Reader
Foxitsoftware Phantompdf
6.8
CVSSv2
CVE-2016-8878
Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF prior to 8.1 on Windows, when the gflags app is enabled, allows remote malicious users to execute arbitrary code via a crafted BMP image embedded in the XFA stream in a PDF document, aka "Data from Faulting Addr...
Foxitsoftware Reader
Foxitsoftware Phantompdf
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »