Phantompdf Security Vulnerabilities and Issues — Phantompdf CVE List

Lucene search

FoxitPhantompdf

4 matches found

CVE•added 2022/08/29 5:15 a.m.•181 views

CVE-2022-25641

Foxit PDF Reader before 11.2.2 and PDF Editor before 11.2.2, and PhantomPDF before 10.1.8, mishandle cross-reference information during compressed-object parsing within signed documents. This leads to delivery of incorrect signature information via an Incremental Saving Attack and a Shadow Attack.

5.5CVSS6AI score0.00069EPSS

CVE•added 2022/08/29 5:15 a.m.•63 views

CVE-2021-40326

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, mishandle hidden and incremental data in signed documents. An attacker can write to an arbitrary file, and display controlled contents, during signature verification.

5.5CVSS6.2AI score0.00039EPSS

CVE•added 2019/06/03 7:29 p.m.•53 views

CVE-2019-6756

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit PhantomPDF 9.4.0.16811. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

5.5CVSS5.7AI score0.00351EPSS

CVE•added 2019/06/03 7:29 p.m.•46 views

CVE-2019-6752

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit PhantomPDF 9.3.10826. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

5.5CVSS5.4AI score0.00128EPSS