Lucene search

K

Pdf-xchange Security Vulnerabilities

cve
cve

CVE-2022-41148

This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS

7.8AI Score

0.001EPSS

2023-01-26 06:59 PM
25
cve
cve

CVE-2022-41153

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.5CVSS

4AI Score

0.001EPSS

2023-01-26 06:59 PM
17
cve
cve

CVE-2022-42369

This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.5CVSS

4AI Score

0.001EPSS

2023-01-26 06:59 PM
14
cve
cve

CVE-2022-41143

This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS

7.8AI Score

0.001EPSS

2023-01-26 06:59 PM
22
cve
cve

CVE-2010-5245

Untrusted search path vulnerability in PDF-XChange Viewer 2.0 Build 54.0 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf file. NOTE: some of these details are obtained from third party.....

6.7AI Score

0.0004EPSS

2022-10-03 04:21 PM
15
cve
cve

CVE-2018-18689

The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, a Signature Wrapping vulnerability exists in multiple products. An attacker can use /ByteRange and xref manipulations that are not...

5.3CVSS

5.7AI Score

0.002EPSS

2021-01-07 06:15 PM
31
cve
cve

CVE-2019-17497

Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files (a related issue to CVE-2018-4993). For example, an NTLM hash is sent for a link to \192.168.0.2\C$\file.pdf without user...

6.5CVSS

7.7AI Score

0.968EPSS

2019-10-11 12:15 AM
131
cve
cve

CVE-2018-16303

PDF-XChange Editor through 7.0.326.1 allows remote attackers to cause a denial of service (resource consumption) via a crafted x:xmpmeta structure, a related issue to...

7.5CVSS

6.8AI Score

0.004EPSS

2018-09-01 02:29 PM
31
cve
cve

CVE-2018-6462

Tracker PDF-XChange Viewer and Viewer AX SDK before 2.5.322.8 mishandle conversion from YCC to RGB colour spaces by calculating on the basis of 1 bpc instead of 8 bpc, which might allow remote attackers to execute arbitrary code via a crafted PDF...

7.8CVSS

7.8AI Score

0.003EPSS

2018-01-31 06:29 PM
25
cve
cve

CVE-2017-13056

The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF...

7.8CVSS

7.8AI Score

0.014EPSS

2017-12-27 05:29 PM
21
cve
cve

CVE-2013-0729

Heap-based buffer overflow in Tracker Software PDF-XChange before 2.5.208 allows remote attackers to execute arbitrary code via a crafted Define Huffman Table header in a JPEG image file stream in a PDF...

8.2AI Score

0.051EPSS

2014-04-02 04:17 PM
31
cve
cve

CVE-2012-5324

Multiple buffer overflows in the Pdf Printer Preferences ActiveX Control in pdfxctrl.dll in Tracker Software PDF-XChange 3.60.0128 allow remote attackers to execute arbitrary code via a long string in the (1) sub_path parameter to the StoreInRegistry function or (2) sub_key parameter to the...

8AI Score

0.26EPSS

2012-10-08 08:55 PM
18
Total number of security vulnerabilities212