Phantompdf Security Vulnerabilities
An issue was discovered in Foxit Reader and PhantomPDF before 10.1. In a certain Shading calculation, the number of outputs is unequal to the number of color components in a color space. This causes an out-of-bounds...
9.8CVSS
7.3AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 10.1. There is an Opt object use-after-free related to Field::ClearItems and Field::DeleteOptions, during AcroForm JavaScript...
9.8CVSS
7.5AI Score
0.003EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 4.1 on macOS. Because the Hardened Runtime protection mechanism is not applied to code signing, code injection (or an information leak) can...
7.5CVSS
6.9AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 10.1. There is a NULL pointer dereference via a crafted PDF...
5.5CVSS
7.3AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 10.1. When there is a multiple interpretation error for /V (in the Additional Action and Field dictionaries), a use-after-free can occur with resultant remote code execution (or an information...
9.8CVSS
8.3AI Score
0.007EPSS
In Foxit Reader and PhantomPDF before 10.0.1, and PhantomPDF before 9.7.3, attackers can execute arbitrary code via a heap-based buffer overflow because dirty image-resource data is...
8.8CVSS
9.1AI Score
0.003EPSS
In Foxit Reader and PhantomPDF before 10.0.1, and PhantomPDF before 9.7.3, attackers can obtain sensitive information about an uninitialized object because of direct transformation from PDF Object to Stream without concern for a crafted...
8.1CVSS
7.6AI Score
0.002EPSS
In Foxit Reader and PhantomPDF before 10.0.1, and PhantomPDF before 9.7.3, attackers can obtain sensitive information from an out-of-bounds read because a text-string index continues to be used after splitting a string into two parts. A crash may also...
7.1CVSS
6.7AI Score
0.001EPSS
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...
3.3CVSS
4.9AI Score
0.002EPSS
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.2.29539. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
7.8CVSS
8.1AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows memory consumption via an ArrayBuffer(0xfffffffe)...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.11. It has a NULL pointer dereference via FXSYS_wcslen in an Epub...
7.5CVSS
7.3AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.10. It allows signature validation bypass via a modified file or a file with non-standard...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It allows signature validation bypass via a modified file or a file with non-standard...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.11. It has an out-of-bounds write when Internet Explorer is...
9.8CVSS
7.5AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has an out-of-bounds write when Internet Explorer is...
9.8CVSS
7.5AI Score
0.002EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.6. It has an untrusted search path that allows a DLL to execute remote...
7.8CVSS
7.8AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.6. It has COM object mishandling when Microsoft Word is...
6.5CVSS
7.3AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka...
9.8CVSS
7.5AI Score
0.004EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe)...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.6. It allows Remote Code Execution via a GoToE or GoToR...
9.8CVSS
8AI Score
0.006EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field...
7.5CVSS
7.9AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF Mac 3.3 and Foxit Reader for Mac before 3.3. It has a NULL pointer...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF Mac 3.3 and Foxit Reader for Mac before 3.3. It allows stack consumption because of interaction between ICC-Based color space and Alternate color...
9.8CVSS
7.4AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has mishandling of cloud credentials, as demonstrated by Google...
7.5CVSS
7.4AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has homograph...
4.3CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has a NULL pointer dereference via FXSYS_wcslen in an Epub...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.11. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field...
7.5CVSS
7.9AI Score
0.001EPSS
4.3CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows NTLM credential theft via a GoToE or GoToR...
5.3CVSS
7.3AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.7. It allows NTLM credential theft via a GoToE or GoToR...
5.3CVSS
7.3AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows stack consumption via nested function calls for XML...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF Mac before 3.4. It has a NULL pointer...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows memory consumption because data is created for each page of an application...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.12. It has a NULL pointer...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows memory consumption because data is created for each page of an application...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF before 8.3.12. It has a NULL pointer dereference during the parsing of file...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It has a use-after-free via a document that lacks a...
9.8CVSS
7.4AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows stack consumption via nested function calls for XML...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It allows stack consumption via a loop of an indirect object...
7.5CVSS
7.3AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference during the parsing of file...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows signature validation bypass via a modified file or a file with non-standard...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has brute-force attack mishandling because the CAS service lacks a limit on login...
9.8CVSS
7.4AI Score
0.002EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has a use-after-free because of JavaScript execution after a deletion or close...
7.5CVSS
7.6AI Score
0.001EPSS
An issue was discovered in Foxit PhantomPDF Mac and Foxit Reader for Mac before 4.0. It allows signature validation bypass via a modified file or a file with non-standard...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via crafted cross-reference stream...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via long strings in the content...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows information disclosure of a hardcoded username and password in the DocuSign...
9.8CVSS
7.1AI Score
0.002EPSS