Unrated severityNVD Advisory· Published Nov 17, 2018· Updated Sep 16, 2024

CVE-2018-19346

Description

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address controls Branch Selection starting at U3DBrowser!PlugInMain+0x00000000000d11ea" issue.

Affected products

Foxitsoftware/U3DBrowser pluginllm-create
Range: 9.3.0.10809
Foxitsoftware/PDF Readerllm-fuzzy
Range: = 9.3.0.10826

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/Yan-1-20/Yan-1-20.github.io/blob/master/2018/11/10/2018/11/2018-11-10/index.htmlmitrex_refsource_MISC
yan-1-20.github.io/2018/11/10/2018/11/2018-11-10/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000