2 matches found
CVE-2022-41147
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
CVE-2022-41147
PDF-XChange Editor is affected by CVE-2022-41147 due to an out-of-bounds write while parsing U3D files, allowing remote code execution when a user opens a malicious file or visits a crafted page. The vulnerability is triggered by crafted U3D data that writes past the end of an allocated buffer, e...