Foxitsoftware

Phantompdf

549 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2018-21244

  • EPSS 0.05%
  • Published 04.06.2020 17:15:11
  • Last modified 21.11.2024 04:03:16

An issue was discovered in Foxit PhantomPDF before 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka FG-VD-18-029.

5.3

CVE-2018-21237

  • EPSS 0.01%
  • Published 04.06.2020 17:15:10
  • Last modified 21.11.2024 04:03:15

An issue was discovered in Foxit PhantomPDF before 8.3.7. It allows NTLM credential theft via a GoToE or GoToR action.

7.5

CVE-2018-21238

  • EPSS 0.02%
  • Published 04.06.2020 17:15:10
  • Last modified 21.11.2024 04:03:15

An issue was discovered in Foxit PhantomPDF before 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.

5.3

CVE-2018-21239

  • EPSS 0.01%
  • Published 04.06.2020 17:15:10
  • Last modified 21.11.2024 04:03:15

An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows NTLM credential theft via a GoToE or GoToR action.

7.5

CVE-2018-21240

  • EPSS 0.02%
  • Published 04.06.2020 17:15:10
  • Last modified 21.11.2024 04:03:15

An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.

7.8

CVE-2018-21241

  • EPSS 0.02%
  • Published 04.06.2020 17:15:10
  • Last modified 21.11.2024 04:03:16

An issue was discovered in Foxit PhantomPDF before 8.3.6. It has an untrusted search path that allows a DLL to execute remote code.

9.8

CVE-2020-13814

  • EPSS 0.03%
  • Published 04.06.2020 16:15:13
  • Last modified 21.11.2024 05:01:55

An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It has a use-after-free via a document that lacks a dictionary.

7.5

CVE-2020-13815

  • EPSS 0.02%
  • Published 04.06.2020 16:15:13
  • Last modified 21.11.2024 05:01:55

An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It allows stack consumption via a loop of an indirect object reference.

7.5

CVE-2019-20814

  • EPSS 0.02%
  • Published 04.06.2020 16:15:12
  • Last modified 21.11.2024 04:39:25

An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows memory consumption because data is created for each page of an application level.

7.5

CVE-2019-20815

  • EPSS 0.03%
  • Published 04.06.2020 16:15:12
  • Last modified 21.11.2024 04:39:25

An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows stack consumption via nested function calls for XML parsing.