Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phantompdf vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-21238
An issue exists in Foxit PhantomPDF prior to 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2018-21242
An issue exists in Foxit PhantomPDF prior to 8.3.6. It allows Remote Code Execution via a GoToE or GoToR action.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2019-20825
An issue exists in Foxit PhantomPDF prior to 8.3.11. It has an out-of-bounds write when Internet Explorer is used.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14207
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling the clone function due to an endless loop resulting from confusing relationships between a child and parent object (caused by an append error).
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14208
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to a NULL pointer dereference and crash when getting a PDF object from a document, or parsing a certain portfolio that contains a null dictionary.
Foxitsoftware Phantompdf
9.8
CVSSv3
CVE-2019-14209
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to Heap Corruption due to data desynchrony when adding AcroForm.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14210
An issue exists in Foxit PhantomPDF prior to 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14211
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash due to the lack of proper validation of the existence of an object prior to performing operations on that object when executing JavaScript.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14212
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash when calling certain XFA JavaScript due to the use of, or access to, a NULL pointer without proper validation on the object.
Foxitsoftware Phantompdf
7.5
CVSSv3
CVE-2019-14213
An issue exists in Foxit PhantomPDF prior to 8.3.11. The application could crash due to the repeated release of the signature dictionary during CSG_SignatureF and CPDF_Document destruction.
Foxitsoftware Phantompdf
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »