2 matches found
CVE-2022-37357
CVE-2022-37357 affects PDF-XChange Editor. The vulnerability arises in the ICO file parsing code, where crafted ICO data can trigger a write past the end of an allocated buffer, enabling arbitrary code execution. Exploitation requires user interaction (target visits a malicious page or opens a ma...
CVE-2022-37357
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...