Phantompdf Security Vulnerabilities and Issues — Page 11 of Phantompdf CVE List

Lucene search

FoxitsoftwarePhantompdf

549 matches found

CVE•added 2019/01/24 4:29 a.m.•35 views

CVE-2018-17672

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

8.8CVSS7.8AI score0.00566EPSS

CVE•added 2019/01/24 4:29 a.m.•35 views

CVE-2018-17674

8.8CVSS7.8AI score0.00566EPSS

CVE•added 2019/01/24 4:29 a.m.•35 views

CVE-2018-17678

8.8CVSS7.8AI score0.00566EPSS

CVE•added 2018/05/17 3:29 p.m.•35 views

CVE-2018-9938

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handl...

8.8CVSS8.8AI score0.00264EPSS

CVE•added 2018/05/17 3:29 p.m.•35 views

CVE-2018-9973

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

6.5CVSS6.5AI score0.00223EPSS

CVE•added 2018/05/17 3:29 p.m.•35 views

CVE-2018-9978

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.5CVSS6.5AI score0.00223EPSS

CVE•added 2018/05/17 3:29 p.m.•35 views

CVE-2018-9982

8.8CVSS8.8AI score0.00474EPSS

CVE•added 2020/06/04 4:15 p.m.•35 views

CVE-2019-20815

An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows stack consumption via nested function calls for XML parsing.

7.5CVSS7.5AI score0.00026EPSS

CVE•added 2020/06/04 4:15 p.m.•35 views

CVE-2019-20819

An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows stack consumption via nested function calls for XML parsing.

7.5CVSS7.5AI score0.00026EPSS

CVE•added 2020/06/04 5:15 p.m.•35 views

CVE-2019-20829

An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has a NULL pointer dereference via FXSYS_wcslen in an Epub file.

7.5CVSS7.4AI score0.00021EPSS

CVE•added 2020/06/04 3:15 p.m.•35 views

CVE-2020-13804

An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows information disclosure of a hardcoded username and password in the DocuSign plugin.

9.8CVSS9AI score0.00034EPSS

CVE•added 2020/10/02 8:15 a.m.•35 views

CVE-2020-26534

An issue was discovered in Foxit Reader and PhantomPDF before 10.1. There is an Opt object use-after-free related to Field::ClearItems and Field::DeleteOptions, during AcroForm JavaScript execution.

9.8CVSS9.4AI score0.00032EPSS

CVE•added 2021/05/07 9:15 p.m.•35 views

CVE-2021-31448

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

4.3CVSS3.4AI score0.02145EPSS

CVE•added 2018/07/31 8:29 p.m.•34 views

CVE-2018-14273

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the remove...

8.8CVSS8.8AI score0.00264EPSS

CVE•added 2019/01/24 4:29 a.m.•34 views

CVE-2018-17632

8.8CVSS7.8AI score0.00784EPSS

CVE•added 2019/01/24 4:29 a.m.•34 views

CVE-2018-17643

8.8CVSS7.8AI score0.00856EPSS

CVE•added 2019/01/24 4:29 a.m.•34 views

CVE-2018-17650

8.8CVSS7.8AI score0.00856EPSS

CVE•added 2019/01/24 4:29 a.m.•34 views

CVE-2018-17684

8.8CVSS7.8AI score0.00566EPSS

CVE•added 2019/01/24 4:29 a.m.•34 views

CVE-2018-17685

8.8CVSS7.8AI score0.00264EPSS

CVE•added 2018/05/24 9:29 p.m.•34 views

CVE-2018-5675

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader before 9.1 and PhantomPDF before 9.1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla...

8.8CVSS8.8AI score0.01618EPSS

CVE•added 2018/05/24 9:29 p.m.•34 views

CVE-2018-5676

8.8CVSS8.8AI score0.01864EPSS

CVE•added 2018/05/17 3:29 p.m.•34 views

CVE-2018-9975

8.8CVSS8.8AI score0.00387EPSS

CVE•added 2020/06/04 4:15 p.m.•34 views

CVE-2019-20817

An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference.

7.5CVSS7.5AI score0.00021EPSS

CVE•added 2020/06/04 3:15 p.m.•34 views

CVE-2020-13806

An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has a use-after-free because of JavaScript execution after a deletion or close operation.

7.5CVSS7.6AI score0.00052EPSS

CVE•added 2020/06/04 3:15 p.m.•34 views

CVE-2020-13808

An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via crafted cross-reference stream data.

7.5CVSS7.5AI score0.00021EPSS

CVE•added 2021/05/07 9:15 p.m.•34 views

CVE-2021-31445

4.3CVSS3.4AI score0.01901EPSS

CVE•added 2018/10/08 4:29 p.m.•33 views

CVE-2018-16294

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-2018-16293, CVE-2018-16295, CVE-2018-16296, and CVE-2018-16297. A specially crafted PDF document can t...

7.8CVSS7.8AI score0.00546EPSS

CVE•added 2018/10/08 4:29 p.m.•33 views

CVE-2018-16296

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-2018-16293, CVE-2018-16294, CVE-2018-16295, and CVE-2018-16297. A specially crafted PDF document can t...

7.8CVSS7.8AI score0.00546EPSS

CVE•added 2019/01/24 4:29 a.m.•33 views

CVE-2018-17636

8.8CVSS7.8AI score0.00856EPSS

CVE•added 2019/01/24 4:29 a.m.•33 views

CVE-2018-17645

8.8CVSS7.8AI score0.00856EPSS

CVE•added 2019/01/24 4:29 a.m.•33 views

CVE-2018-17653

8.8CVSS7.8AI score0.00856EPSS

CVE•added 2019/01/24 4:29 a.m.•33 views

CVE-2018-17656

8.8CVSS7.8AI score0.00856EPSS

CVE•added 2019/01/24 4:29 a.m.•33 views

CVE-2018-17673

8.8CVSS7.8AI score0.00566EPSS

CVE•added 2019/01/24 4:29 a.m.•33 views

CVE-2018-17686

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

6.5CVSS6.3AI score0.1083EPSS

CVE•added 2018/05/17 3:29 p.m.•33 views

CVE-2018-9940

8.8CVSS8.8AI score0.00264EPSS

CVE•added 2018/05/17 3:29 p.m.•33 views

CVE-2018-9946

6.5CVSS6.5AI score0.00201EPSS

CVE•added 2018/05/17 3:29 p.m.•33 views

CVE-2018-9968

8.8CVSS8.8AI score0.00387EPSS

CVE•added 2020/06/04 4:15 p.m.•33 views

CVE-2019-20820

An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference during the parsing of file data.

7.5CVSS7.5AI score0.00026EPSS

CVE•added 2021/05/07 9:15 p.m.•33 views

CVE-2021-31449

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

7.8CVSS7.8AI score0.02166EPSS

CVE•added 2021/05/07 9:15 p.m.•32 views

CVE-2021-31447

4.3CVSS3.4AI score0.01901EPSS

CVE•added 2019/01/24 4:29 a.m.•31 views

CVE-2018-17644

8.8CVSS7.8AI score0.00856EPSS

CVE•added 2018/05/17 3:29 p.m.•31 views

CVE-2018-9944

8.8CVSS8.8AI score0.00387EPSS

CVE•added 2020/06/04 3:15 p.m.•31 views

CVE-2020-13803

An issue was discovered in Foxit PhantomPDF Mac and Foxit Reader for Mac before 4.0. It allows signature validation bypass via a modified file or a file with non-standard signatures.

7.5CVSS7.5AI score0.00007EPSS

CVE•added 2020/10/02 8:15 a.m.•31 views

CVE-2020-26537

An issue was discovered in Foxit Reader and PhantomPDF before 10.1. In a certain Shading calculation, the number of outputs is unequal to the number of color components in a color space. This causes an out-of-bounds write.

9.8CVSS9.2AI score0.00027EPSS

CVE•added 2021/05/07 9:15 p.m.•31 views

CVE-2021-31443

4.3CVSS3.4AI score0.01989EPSS

CVE•added 2018/05/17 3:29 p.m.•30 views

CVE-2018-9962

8.8CVSS8.8AI score0.00345EPSS

CVE•added 2020/06/04 3:15 p.m.•30 views

CVE-2020-13810

An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows signature validation bypass via a modified file or a file with non-standard signatures.

7.5CVSS7.5AI score0.00007EPSS

CVE•added 2021/05/07 9:15 p.m.•30 views

CVE-2021-31444

4.3CVSS3.4AI score0.02145EPSS

CVE•added 2019/06/03 7:29 p.m.•26 views

CVE-2019-6771

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 2019.010.20098. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

5.5CVSS5.5AI score0.00647EPSS

Total number of security vulnerabilities549