Lucene search

CVE-2021-27263

🗓️ 30 Mar 2021 15:15:15Reported by zdiType

CVE-2021-27263 vulnerability in Foxit PhantomPDF 10.1.0.37527 allows remote code execution via malicious PDF

Reporter	Title	Published	Views	Family All 6
Prion	Design/Logic Flaw	30 Mar 202115:15	–	prion
Cvelist	CVE-2021-27263	30 Mar 202114:35	–	cvelist
CNVD	Foxit PhantomPDF Out-of-Bounds Read Vulnerability (CNVD-2021-26385)	24 Mar 202100:00	–	cnvd
Zero Day Initiative	Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability	22 Mar 202100:00	–	zdi
NVD	CVE-2021-27263	30 Mar 202115:15	–	nvd
Tenable Nessus	Foxit 3D Plugin Beta < 10.1.3.37598 Multiple Vulnerabilities	26 Mar 202100:00	–	nessus

Nvd

Vulners

Node

foxitsoftware foxit_readerRange≤10.1.0.37527

foxitsoftware phantompdfRange≤10.1.0.37527

AND

microsoft windowsMatch-

[
  {
    "product": "PhantomPDF",
    "vendor": "Foxit",
    "versions": [
      {
        "status": "affected",
        "version": "10.1.0.37527"
      }
    ]
  }
]

Source	Link
foxitsoftware	www.foxitsoftware.com/support/security-bulletins.php
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-21-345/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Mar 2021 15:15Current

3.8Low risk

Vulners AI Score3.8

CVSS24.3

CVSS33.3

EPSS0.04137

CWE-125