Foxit Phantompdf Luki w zabezpieczeniach

Oś czasu

Wersja

9.034
9.134
9.232
8.3.028
8.3.128

Przeciwdziałanie

Official Fix122
Temporary Fix0
Workaround0
Unavailable0
Not Defined64

Wykorzystywanie

High0
Functional0
Proof-of-Concept0
Unproven0
Not Defined186

Wektor dostępu

Not Defined0
Physical0
Local6
Adjacent0
Network180

Uwierzytelnianie

Not Defined0
High0
Low10
None176

Interakcja z użytkownikiem

Not Defined0
Required144
None42

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤414
≤56
≤624
≤764
≤874
≤94
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤414
≤56
≤636
≤752
≤874
≤94
≤100

VulDB

≤10
≤20
≤30
≤40
≤542
≤626
≤7102
≤814
≤92
≤100

NVD

≤10
≤20
≤30
≤414
≤50
≤610
≤78
≤8100
≤918
≤1024

CNA

≤10
≤20
≤30
≤48
≤50
≤60
≤70
≤828
≤90
≤100

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k20
<2k112
<5k54
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj dzisiaj

<1k176
<2k10
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

🔴 CTI Zajęcia

Affected Versions (52): 3.0, 3.1, 3.2, 3.3, 4.0, 8.3, 8.3.1, 8.3.2, 8.3.3, 8.3.4, 8.3.5, 8.3.6, 8.3.7, 8.3.8, 8.3.9, 8.3.11, 9.0, 9.1, 9.1.5096, 9.2, 9.2.0.9297, 9.3, 9.3.10826, 9.4, 9.4.1, 9.4.1.16828, 9.5, 9.5.0.20723, 9.5.0.20732, 9.6, 9.6.0.25114, 9.7, 9.7, 9.7.0.29478, 9.7.1, 9.7.1, 9.7.1.29511, 9.7.2, 9.7.2, 9.7.2.29539, 9.7.3, 9.7.3, 9.7.4, 9.7.4, 10.0, 10.0.0.35798, 10.1, 10.1.0.37527, 10.1.1, 10.1.2, 10.1.3, 10.1.3.37598

Link to Product Website: https://www.foxitsoftware.com/

Typ oprogramowania: Document Reader Software

OpublikowanoBaseTempSłaby punkt0dayDzisiajWykPrzCTICVE
2022-08-294.34.2Foxit PDF Reader/PhantomPDF Compressed Object Parser weak encryption$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2022-25641
2022-08-297.06.9Foxit PDF Reader/PDF Editor/PhantomPDF Javascript memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41785
2022-08-297.06.9Foxit PDF Reader/PDF Editor/PhantomPDF Javascript memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-41784
2022-08-297.06.9Foxit PDF Reader/PDF Editor/PhantomPDF Javascript memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41783
2022-08-297.06.9Foxit PDF Reader/PDF Editor/PhantomPDF Javascript memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41782
2022-08-297.06.9Foxit PDF Reader/PDF Editor/PhantomPDF Javascript memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41781
2022-08-297.06.9Foxit PDF Reader/PDF Editor/PhantomPDF memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-41780
2022-08-295.55.4Foxit PDF Reader/PDF Editor/PhantomPDF Signed Document weak authentication$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2021-40326
2022-03-114.34.1Foxit PDF Reader/PhantomPDF PDF Parser denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-25108
2021-08-128.07.7Foxit Reader/PhantomPDF Office Document memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-33793
2021-08-128.07.7Foxit Reader/PhantomPDF sql injection$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-38574
2021-08-128.07.7Foxit Reader/PhantomPDF Pathname CombineFiles Remote Code Execution$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-38573
2021-08-127.67.3Foxit Reader/PhantomPDF Pathname extractPages$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2021-38572
2021-08-127.06.7Foxit Reader/PhantomPDF privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2021-38571
2021-08-127.26.9Foxit PhantomPDF/Reader Installation privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-38570
2021-08-125.95.6Foxit PhantomPDF/Reader XFA Form denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-38569
2021-08-128.07.7Foxit PhantomPDF/Reader PDF Document memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-38568
2021-08-127.77.3Foxit Reader/PhantomPDF XFA Form Remote Code Execution$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-33794
2021-07-105.25.0Foxit Reader/PhantomPDF PDF Document weak authentication$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-33795
2021-07-107.06.7Foxit Reader/PhantomPDF Trailer Dictionary memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2021-33792
2021-06-176.36.3Foxit PhantomPDF XFA Template privilege escalation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-31476
2021-03-307.07.0Foxit PhantomPDF U3D Object memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-27271
2021-03-307.07.0Foxit PhantomPDF JPEG2000 Images information disclosure$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-27270
2021-03-307.07.0Foxit PhantomPDF U3D Object memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-27269
2021-03-307.07.0Foxit PhantomPDF U3D Object memory corruption$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-27268

160 więcej wpisów nie jest pokazywanych

więcej wpisów autorstwa Foxit

Do you need the next level of professionalism?

Upgrade your account now!