Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 1:11 p.m.7 views

CVE-2018-18689

The Portable Document Format PDF specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, a Signature Wrapping vulnerability exists in multiple products. An attacker can use /ByteRange and xref manipulations that are not detected...

5.3CVSS6.4AI score0.03688EPSS
Exploits0References1
CVE
CVE
added 2021/01/07 5:59 p.m.74 views

CVE-2018-18689

CVE-2018-18689 describes a Signature Wrapping issue in PDF signature validation caused by missing guidance in the PDF spec, allowing attackers to manipulate /ByteRange and xref without detection. The vulnerability affects Foxit Reader before 9.4 and PhantomPDF before 8.3.9 and 9.x before 9.4, as ...

5.3CVSS5.7AI score0.03688EPSS
Exploits0References4Affected Software17
Kaspersky
Kaspersky
added 2019/01/10 12:0 a.m.72 views

KLA11398 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF

Multiple vulnerabilities were found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out-of-bounds Write/Read vulnerability can be exploited remotely to...

7.1CVSS6.9AI score0.49566EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2019/01/04 12:0 a.m.34 views

Foxit Reader Multiple Vulnerabilities (Jan 2019) - Windows

Foxit Reader is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:reader";...

7.1CVSS7.2AI score0.49566EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/01/04 12:0 a.m.27 views

Foxit PhantomPDF < 9.4 Multiple Vulnerabilities (Jan 2019) - Windows

Foxit PhantomPDF is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:phantompdf";...

7.1CVSS7.2AI score0.49566EPSS
Exploits1References1
Rows per page
Query Builder