2 matches found
CVE-2020-17431
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2020-17431
The CVE-2020-17431 entry describes a remote code execution in Foxit Studio Photo (confirmed affected: Foxit Studio Photo 3.6.6.922 and earlier per CNVD/NVD entries; ZDI cites a CR2 file parsing flaw). The root cause is improper validation during CR2 file parsing, causing a write past the end of a...