2 matches found
CVE-2020-17422
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...
CVE-2020-17422
Foxit Studio Photo information disclosure (CVE-2020-17422) stems from improper validation in EPS file parsing, causing an out-of-bounds read of an allocated structure. Affected versions include Foxit Studio Photo 3.6.6.x; an attacker must lure a user to open a malicious page/file, enabling inform...