2 matches found
CVE-2022-37349
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the submitForm...
CVE-2022-37349
CVE-2022-37349 concerns PDF-XChange Editor. The issue is a buffer over-read in the submitForm method that can be triggered via JavaScript when a user visits a malicious page or opens a malicious file, allowing remote code execution in the context of the current process. Details come from ZDI-22-1...