Foxitsoftware

Phantompdf

549 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2018-10486

  • EPSS 0.22%
  • Published 17.05.2018 15:29:00
  • Last modified 21.11.2024 03:41:24

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a ...

6.5

CVE-2018-10487

  • EPSS 0.22%
  • Published 17.05.2018 15:29:00
  • Last modified 21.11.2024 03:41:25

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a ...

8.8

CVE-2017-17557

  • EPSS 30.02%
  • Published 24.04.2018 20:29:00
  • Last modified 21.11.2024 03:18:09

In Foxit Reader before 9.1 and Foxit PhantomPDF before 9.1, a flaw exists within the parsing of the BITMAPINFOHEADER record in BMP files. The issue results from the lack of proper validation of the biSize member, which can result in a heap based buff...

8.8

CVE-2018-10303

  • EPSS 0.63%
  • Published 23.04.2018 23:29:00
  • Last modified 21.11.2024 03:41:10

A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-y0nqfutlf3.

7.8

CVE-2018-10302

  • EPSS 0.78%
  • Published 23.04.2018 19:29:00
  • Last modified 21.11.2024 03:41:10

A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-jyb51g3mv9.

7.8

CVE-2016-6168

  • EPSS 0.35%
  • Published 07.02.2018 17:29:00
  • Last modified 21.11.2024 02:55:35

Use-after-free vulnerability in Foxit Reader and PhantomPDF 7.3.4.311 and earlier on Windows allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a crafted PDF file.

7.8

CVE-2016-6169

  • EPSS 0.38%
  • Published 07.02.2018 17:29:00
  • Last modified 21.11.2024 02:55:35

Heap-based buffer overflow in Foxit Reader and PhantomPDF 7.3.4.311 and earlier on Windows allows remote attackers to cause a denial of service (memory corruption and application crash) or potentially execute arbitrary code via the Bezier data in a c...

9.3

CVE-2017-10994

  • EPSS 1.03%
  • Published 07.07.2017 16:29:00
  • Last modified 20.04.2025 01:37:25

Foxit Reader before 8.3.1 and PhantomPDF before 8.3.1 have an Arbitrary Write vulnerability, which allows remote attackers to execute arbitrary code via a crafted document.

8.8

CVE-2017-8453

  • EPSS 1.21%
  • Published 03.05.2017 05:59:00
  • Last modified 20.04.2025 01:37:25

Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.

8.8

CVE-2017-8454

  • EPSS 1.21%
  • Published 03.05.2017 05:59:00
  • Last modified 20.04.2025 01:37:25

Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.