Phantompdf Security Vulnerabilities and Issues — Phantompdf CVE List

Lucene search

FoxitsoftwarePhantompdf

3 matches found

CVE•added 2018/04/24 8:29 p.m.•58 views

CVE-2017-17557

In Foxit Reader before 9.1 and Foxit PhantomPDF before 9.1, a flaw exists within the parsing of the BITMAPINFOHEADER record in BMP files. The issue results from the lack of proper validation of the biSize member, which can result in a heap based buffer overflow. An attacker can leverage this to exe...

8.8CVSS8.7AI score0.3002EPSS

Web

CVE•added 2018/04/23 7:29 p.m.•55 views

CVE-2018-10302

A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-jyb51g3mv9.

7.8CVSS8.4AI score0.0078EPSS

CVE•added 2018/04/23 11:29 p.m.•54 views

CVE-2018-10303

A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-y0nqfutlf3.

8.8CVSS8.8AI score0.00626EPSS