Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/06/27 10:18 p.m.15 views

CVE-2025-6640

PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8AI score0.00247EPSS
Exploits0References1
NVD
NVD
added 2025/06/25 10:15 p.m.6 views

CVE-2025-6640

PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS0.00247EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/25 9:43 p.m.8 views

CVE-2025-6640 PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability

PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS0.00247EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/25 9:43 p.m.4 views

CVE-2025-6640 PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability

PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8AI score0.00247EPSS
Exploits0References2
CVE
CVE
added 2025/06/25 9:43 p.m.23 views

CVE-2025-6640

PDF-XChange Editor is affected by a Use-After-Free in U3D file parsing that can lead to remote code execution. The flaw arises from not validating the existence of an object before operating on it, enabling code execution in the current process when a user opens a malicious file or visits a malic...

7.8CVSS7.8AI score0.00247EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder