2 matches found
CVE-2020-17428
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...
CVE-2020-17428
Foxit Studio Photo CMP file parsing vulnerability (CVE-2020-17428) allows information disclosure via a CMP data handling flaw that can read past the end of an allocated structure. Evidence from ZDI-20-1339 confirms an out-of-bounds read, enabling leakage when a user visits a malicious page or ope...