Description
Multiple vulnerabilities were found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service.
Below is a complete list of vulnerabilities:
- Use after free vulnerability in PDF file can be exploited remotely to execute arbitrary code and cause denial of service.
- A denial of service vulnerability in PDF file can be exploited to potentially cause denial of service.
- Memory corruption vulnerability in PDF JavaScript API can be exploited renotely to execute arbitrary code or cause denial of service.
- Out of bounds write vulnerability in XFA templates can be exploited remotely to execute arbitrary code and cause denial of service.
Original advisories
Related products
CVE list
- CVE-2020-13560 critical
- CVE-2020-13570 critical
- CVE-2020-13548 critical
- CVE-2020-28203 high
- CVE-2020-13547 critical
- CVE-2020-13557 critical
- CVE-2020-27860 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!