Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-20825
An issue exists in Foxit PhantomPDF prior to 8.3.11. It has an out-of-bounds write when Internet Explorer is used.
Foxitsoftware Phantompdf
4.3
CVSSv3
CVE-2019-20832
An issue exists in Foxit PhantomPDF prior to 8.3.10. It has homograph mishandling.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20833
An issue exists in Foxit PhantomPDF prior to 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google Drive.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-20834
An issue exists in Foxit PhantomPDF prior to 8.3.10. It allows signature validation bypass via a modified file or a file with non-standard signatures.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14207
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling the clone function due to an endless loop resulting from confusing relationships between a child and parent object (caused by an append error).
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14208
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to a NULL pointer dereference and crash when getting a PDF object from a document, or parsing a certain portfolio that contains a null dictionary.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2019-14209
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to Heap Corruption due to data desynchrony when adding AcroForm.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14210
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14212
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling certain XFA JavaScript due to the use of, or access to, a NULL pointer without proper validation on the object.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14213
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash due to the repeated release of the signature dictionary during CSG_SignatureF and CPDF_Document destruction.
Foxitsoftware Phantompdf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028
CVE-2024-32406
CVE-2024-25624
IMAP
CVE-2024-2310
CVE-2024-0874
CVE-2024-20359
XXE
remote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »