VYPR

PhantomPDF Mac

by Foxitsoftware

CVEs (226)

  • CVE-2016-4063HigApr 22, 2016
    risk 0.51cvss 7.8epss 0.05

    Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via an object with a revision number of -1 in a PDF document.

  • CVE-2016-4059HigApr 22, 2016
    risk 0.51cvss 7.8epss 0.04

    Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted FlateDecode stream in a PDF document.

  • CVE-2021-38569HigAug 11, 2021
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects.

  • CVE-2020-26540HigOct 2, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Foxit Reader and PhantomPDF before 4.1 on macOS. Because the Hardened Runtime protection mechanism is not applied to code signing, code injection (or an information leak) can occur.

  • CVE-2019-20837HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It allows signature validation bypass via a modified file or a file with non-standard signatures.

  • CVE-2019-20836HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has mishandling of cloud credentials, as demonstrated by Google Drive.

  • CVE-2019-20834HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Foxit PhantomPDF before 8.3.10. It allows signature validation bypass via a modified file or a file with non-standard signatures.

  • CVE-2019-20833HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Foxit PhantomPDF before 8.3.10. It has mishandling of cloud credentials, as demonstrated by Google Drive.

  • CVE-2019-20831HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in the 3D Plugin Beta for Foxit Reader and PhantomPDF before 9.5.0.20733. It has void data mishandling, causing a crash.

  • CVE-2019-20829HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has a NULL pointer dereference via FXSYS_wcslen in an Epub file.

  • CVE-2019-20828HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.6. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field APs.

  • CVE-2019-20824HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.11. It has a NULL pointer dereference via FXSYS_wcslen in an Epub file.

  • CVE-2019-20823HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.11. It has a buffer overflow because a looping correction does not occur after JavaScript updates Field APs.

  • CVE-2018-21240HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.

  • CVE-2018-21238HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in Foxit PhantomPDF before 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.

  • CVE-2020-13815HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It allows stack consumption via a loop of an indirect object reference.

  • CVE-2019-20821HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit PhantomPDF Mac before 3.4. It has a NULL pointer dereference.

  • CVE-2019-20820HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference during the parsing of file data.

  • CVE-2019-20819HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows stack consumption via nested function calls for XML parsing.

  • CVE-2019-20818HigJun 4, 2020
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows memory consumption because data is created for each page of an application level.

Page 8 of 12