CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-21239
https://notcve.org/view.php?id=CVE-2018-21239
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows NTLM credential theft via a GoToE or GoToR action. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.2. Permite el robo de credenciales NTLM por medio de una acción GoToE o GoToR • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-522: Insufficiently Protected Credentials •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-21240
https://notcve.org/view.php?id=CVE-2018-21240
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows memory consumption via an ArrayBuffer(0xfffffffe) call. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.2. Permite el consumo de la memoria por medio de una llamada ArrayBuffer(0xfffffffe) • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20820
https://notcve.org/view.php?id=CVE-2019-20820
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference during the parsing of file data. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.7. Presenta una desreferencia del puntero NULL de puntero durante el análisis sintáctico de los datos de los archivos • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20819
https://notcve.org/view.php?id=CVE-2019-20819
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows stack consumption via nested function calls for XML parsing. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.7. Permite el consumo de pila por medio de llamadas de funciones anidadas para el análisis de XML • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-674: Uncontrolled Recursion •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20818
https://notcve.org/view.php?id=CVE-2019-20818
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows memory consumption because data is created for each page of an application level. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.7. Permite el consumo de la memoria porque los datos son creados para cada página de un nivel de aplicación • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-20817
https://notcve.org/view.php?id=CVE-2019-20817
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.7. Presenta una desreferencia del puntero NULL • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-13815
https://notcve.org/view.php?id=CVE-2020-13815
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It allows stack consumption via a loop of an indirect object reference. Se detectó un problema en Foxit Reader y el PhantomPDF versiones anteriores a 9.7.1. Permite el consumo de pila por medio de un bucle de una referencia a objeto indirecta • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-13814
https://notcve.org/view.php?id=CVE-2020-13814
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It has a use-after-free via a document that lacks a dictionary. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.7.1. Presenta un uso de la memoria previamente liberada por medio de un documento que carece de un diccionario • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-13810
https://notcve.org/view.php?id=CVE-2020-13810
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows signature validation bypass via a modified file or a file with non-standard signatures. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.7.2. Permite omitir la comprobación de firma por medio de un archivo modificado o un archivo con firmas no estándar • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-13808
https://notcve.org/view.php?id=CVE-2020-13808
04 Jun 2020 — An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via crafted cross-reference stream data. Se detectó un problema en Foxit Reader y PhantomPDF versiones anteriores a 9.7.2. Permite el consumo de recursos por medio de datos de flujo de referencia cruzada • https://www.foxitsoftware.com/support/security-bulletins.php • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •