3 matches found
CVE-2022-42395
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
CVE-2022-42395
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
CVE-2022-42395
CVE-2022-42395 affects PDF-XChange Editor via a buffer overrun in XPS parsing that permits remote code execution after user interaction. Root cause: crafted XPS data causing write past end of allocated buffer. Exploitation tied to ZDI-18274. CVSS v3.1 base score 7.8 (HIGH). Remediation: update to...