8 matches found
CVE-2025-64085
PDF-XChange Editor v10.7.3.401 has a NULL pointer dereference in importDataObject() that can be triggered by crafted input to cause a Denial of Service. Documents (NVD/Red Hat/EUVD/CVE List/CNNVD) confirm DoS via this input; exploitation details are not provided in the available materials, and no...
CVE-2025-58113
CVE-2025-58113 affects PDF-XChange Editor 10.7.3.401. Cisco Talos details an out-of-bounds read in the EMF processing path when handling specially crafted EMF files, potentially allowing an attacker to disclose sensitive memory contents. The vulnerability is confirmed in the PDF-XChange Editor Co...
CVE-2025-27931
An out-of-bounds read vulnerability exists in the EMF functionality of PDF-XChange Editor version 10.5.2.395. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...
The vulnerability of PDF document viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the use of memory after it is freed, allowing an attacker to disclose protected information.
The vulnerability of PDF viewing and editing programs such as PDF-XChange Editor, PDF-Tools, and PDF-XChange PRO lies in the use of memory after it is freed during file processing for U3D operations. Exploiting this vulnerability can allow attackers to disclose sensitive information that is...
PDF-XChange Editor Out-of-Bounds Write Vulnerability (CNVD-2025-22248)
PDF-XChange Editor is a PDF file viewing software from PDF-XChange running on Microsoft Windows systems. PDF-XChange Editor suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context of the current process...
CVE-2024-8824
PDF-XChange Editor JB2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...
PT-2024-6470 · Unknown · Pdf-Xchange Editor
Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...
Vulnerabilities fixed in Tracker Software PDF-Xchange
Tracker Software has fixed vulnerabilities in PDF-Xchange. A malicious party could exploit the vulnerabilities to cause a denial-of-service and potentially execute code with privileges of the victim. This requires the malicious party to trick the victim into opening a malicious file to open...