Lucene search

CVE-2021-27264

🗓️ 30 Mar 2021 15:15:15Reported by zdiType

CVE-2021-27264 allows remote attackers to disclose sensitive information in Foxit PhantomPDF 10.1.0.37527

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Prion	Design/Logic Flaw	30 Mar 202115:15	–	prion
Cvelist	CVE-2021-27264	30 Mar 202114:35	–	cvelist
CNVD	Foxit PhantomPDF Out-of-Bounds Read Vulnerability (CNVD-2021-26386)	24 Mar 202100:00	–	cnvd
Zero Day Initiative	Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability	22 Mar 202100:00	–	zdi
NVD	CVE-2021-27264	30 Mar 202115:15	–	nvd
Tenable Nessus	Foxit 3D Plugin Beta < 10.1.3.37598 Multiple Vulnerabilities	26 Mar 202100:00	–	nessus

Nvd

Vulners

Node

foxitsoftware foxit_readerRange≤10.1.0.37527

foxitsoftware phantompdfRange≤10.1.0.37527

AND

microsoft windowsMatch-

[
  {
    "product": "PhantomPDF",
    "vendor": "Foxit",
    "versions": [
      {
        "status": "affected",
        "version": "10.1.0.37527"
      }
    ]
  }
]

Source	Link
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-21-346/
foxitsoftware	www.foxitsoftware.com/support/security-bulletins.php

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Mar 2021 15:15Current

3.8Low risk

Vulners AI Score3.8

CVSS24.3

CVSS33.3

EPSS0.02145

CWE-125