Foxitsoftware Phantompdf
22 CVEs affecting Foxitsoftware Phantompdf. Latest disclosed: 2017-07-07. Critical: 0, High: 14.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-8454 | High | 8.8 | 2017-05-03 | Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execu… |
CVE-2017-8453 | High | 8.8 | 2017-05-03 | Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execu… |
CVE-2016-8878 | High | 8.8 | 2016-10-31 | Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbit… |
CVE-2016-8877 | High | 8.8 | 2016-10-31 | Heap buffer overflow (Out-of-Bounds write) vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows allows remote attackers to execute arbitrary code… |
CVE-2017-5556 | High | 8.1 | 2017-01-23 | The ConvertToPDF plugin in Foxit Reader before 8.2 and PhantomPDF before 8.2 on Windows, when the gflags app is enabled, allows remote attackers to cause a den… |
CVE-2017-8455 | High | 7.8 | 2017-05-03 | Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execu… |
CVE-2016-4065 | High | 7.8 | 2016-04-22 | The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 7.3.4 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of se… |
CVE-2016-4064 | High | 7.8 | 2016-04-22 | Use-after-free vulnerability in the XFA forms handling functionality in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute… |
CVE-2016-4063 | High | 7.8 | 2016-04-22 | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via an object with a revi… |
CVE-2016-4059 | High | 7.8 | 2016-04-22 | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted FlateDecode… |
CVE-2016-8876 | High | 7.5 | 2016-10-31 | Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbit… |
CVE-2016-4061 | High | 7.5 | 2016-04-22 | Foxit Reader and PhantomPDF before 7.3.4 on Windows allow remote attackers to cause a denial of service (application crash) via a crafted content stream. |
CVE-2016-4060 | High | 7.5 | 2016-04-22 | Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to cause a denial of service (application crash) vi… |
CVE-2017-10994 | High | 7.3 | 2017-07-07 | Foxit Reader before 8.3.1 and PhantomPDF before 8.3.1 have an Arbitrary Write vulnerability, which allows remote attackers to execute arbitrary code via a craf… |
CVE-2016-8879 | Medium | 6.5 | 2016-10-31 | The thumbnail shell extension plugin (FoxitThumbnailHndlr_x86.dll) in Foxit Reader and PhantomPDF before 8.1 on Windows allows remote attackers to cause a deni… |
CVE-2016-4062 | Medium | 5.5 | 2016-04-22 | Foxit Reader and PhantomPDF before 7.3.4 on Windows improperly report format errors recursively, which allows remote attackers to cause a denial of service (ap… |
CVE-2016-8875 | Medium | 5.3 | 2016-10-31 | The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of serv… |
CVE-2017-6883 | Medium | 4.7 | 2017-03-14 | The ConvertToPDF plugin in Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a… |
CVE-2015-8580 | | 2015-12-16 | Multiple use-after-free vulnerabilities in the (1) Print method and (2) App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2 allo… | |
CVE-2015-3633 | | 2015-05-01 | Foxit Reader, Enterprise Reader, and PhantomPDF before 7.1.5 allow remote attackers to cause a denial of service (memory corruption and crash) via vectors rela… |