CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20835
https://notcve.org/view.php?id=CVE-2019-20835
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has homograph mishandling. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.5. Presenta un manejo inapropiado de homógrafos • https://www.foxitsoftware.com/support/security-bulletins.php •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20836
https://notcve.org/view.php?id=CVE-2019-20836
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It has mishandling of cloud credentials, as demonstrated by Google Drive. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.5. Presenta un manejo inapropiado de las credenciales en la nube, como es demostrado por Google Drive • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20837
https://notcve.org/view.php?id=CVE-2019-20837
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.5. It allows signature validation bypass via a modified file or a file with non-standard signatures. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.5. Permite una omisión de comprobación de firma por medio de un archivo modificado o un archivo con firmas no estándar • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-21237
https://notcve.org/view.php?id=CVE-2018-21237
04 Jun 2020 — An issue was discovered in Foxit PhantomPDF before 8.3.7. It allows NTLM credential theft via a GoToE or GoToR action. Se detectó un problema en Foxit PhantomPDF versiones anteriores a 8.3.7. Permite el robo de credenciales NTLM por medio de una acción GoToE o GoToR • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-21238
https://notcve.org/view.php?id=CVE-2018-21238
04 Jun 2020 — An issue was discovered in Foxit PhantomPDF before 8.3.7. It allows memory consumption via an ArrayBuffer(0xfffffffe) call. Se detectó un problema en Foxit PhantomPDF versiones anteriores a 8.3.7. Permite el consumo de la memoria por medio de una llamada ArrayBuffer(0xfffffffe) • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-21239
https://notcve.org/view.php?id=CVE-2018-21239
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows NTLM credential theft via a GoToE or GoToR action. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.2. Permite el robo de credenciales NTLM por medio de una acción GoToE o GoToR • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-21240
https://notcve.org/view.php?id=CVE-2018-21240
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows memory consumption via an ArrayBuffer(0xfffffffe) call. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.2. Permite el consumo de la memoria por medio de una llamada ArrayBuffer(0xfffffffe) • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-21241
https://notcve.org/view.php?id=CVE-2018-21241
04 Jun 2020 — An issue was discovered in Foxit PhantomPDF before 8.3.6. It has an untrusted search path that allows a DLL to execute remote code. Se detectó un problema en Foxit PhantomPDF versiones anteriores a 8.3.6. Presenta una ruta de búsqueda no confiable que permite a una DLL ejecutar código remoto • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-426: Untrusted Search Path •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 0CVE-2018-21242
https://notcve.org/view.php?id=CVE-2018-21242
04 Jun 2020 — An issue was discovered in Foxit PhantomPDF before 8.3.6. It allows Remote Code Execution via a GoToE or GoToR action. Se detectó un problema en Foxit PhantomPDF versiones anteriores a 8.3.6. Permite una Ejecución de Código Remota por medio de una acción GoToE o GoToR • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-21243
https://notcve.org/view.php?id=CVE-2018-21243
04 Jun 2020 — An issue was discovered in Foxit PhantomPDF before 8.3.6. It has COM object mishandling when Microsoft Word is used. Se detectó un problema en Foxit PhantomPDF versiones anteriores a 8.3.6. Presenta un manejo inapropiado de objetos COM cuando es usado Microsoft Word • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-434: Unrestricted Upload of File with Dangerous Type •