Lucene search
K
FoxitsoftwareReader

7 matches found

CVE
CVE
added 2020/02/13 10:20 p.m.121 views

CVE-2020-8852

CVE-2020-8852 affects Foxit Reader 9.7.0.29455 (and related records) with an out-of-bounds read in JPEG2000 file processing that can disclose sensitive information. Root cause: insufficient validation of user-supplied data leading to a read past the end of an allocated buffer. Attack requires use...

4.3CVSS3.3AI score0.04176EPSS
CVE
CVE
added 2020/04/22 8:51 p.m.81 views

CVE-2020-10901

CVE-2020-10901 affects Foxit PhantomPDF 9.7.1.29511. The vulnerability lies in U3D object handling in PDF files and results from insufficient validation of user-supplied data, causing a read past the end of an allocated object. It enables remote information disclosure and, when combined with othe...

4.3CVSS3.3AI score0.03476EPSS
CVE
CVE
added 2020/08/19 8:55 p.m.76 views

CVE-2020-15637

The CVE-2020-15637 entry concerns Foxit PhantomPDF (and related Foxit products) with a use-after-free flaw in SetLocalDescription that can disclose sensitive information. Exploitation requires user interaction (visiting a malicious page or opening a malicious file) and is described as a local/vec...

4.3CVSS3.8AI score0.04074EPSS
CVE
CVE
added 2020/04/22 8:51 p.m.73 views

CVE-2020-10903

CVE-2020-10903 affects Foxit PhantomPDF 9.7.1.29511, where U3D objects in PDFs are not properly validated, causing an out-of-bounds read that can disclose sensitive data. The issue requires user interaction (visiting a malicious page or opening a malicious file) and, in combination with other vul...

4.3CVSS3.3AI score0.03405EPSS
CVE
CVE
added 2020/04/22 8:50 p.m.70 views

CVE-2020-10894

The CVE-2020-10894 issue affects Foxit PhantomPDF 9.7.1.29511 (U3D object handling) and is caused by insufficient validation of user-supplied data, leading to a read past the end of an allocated object (out-of-bounds read). This enables remote information disclosure with user interaction required...

4.3CVSS3.3AI score0.03311EPSS
CVE
CVE
added 2020/04/22 8:51 p.m.63 views

CVE-2020-10905

CVE-2020-10905 affects Foxit PhantomPDF 9.7.1.29511. The issue is an out-of-bounds read in U3D vertex handling due to insufficient validation, requiring user interaction (malicious page/file) and potentially enabling code execution when combined with other vulnerabilities. Multiple sources (ZDI-2...

4.3CVSS3.3AI score0.03405EPSS
CVE
CVE
added 2020/06/04 4:44 p.m.56 views

CVE-2019-20835

Foxit Reader and PhantomPDF prior to 9.5 are affected by a homograph mishandling issue. CVSSv3.1 base score 4.3 (NETWORK attack, USER INTERACTION required; I=LOW) per provided records. No explicit root cause, exploit details, or remediation are stated in the documents; no detailed impact beyond t...

4.3CVSS4.6AI score0.00969EPSS