Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Reader
(Foxitsoftware)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 259 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-06-04 | CVE-2020-13803 | An issue was discovered in Foxit PhantomPDF Mac and Foxit Reader for Mac before 4.0. It allows signature validation bypass via a modified file or a file with non-standard signatures. | Phantompdf, Reader | 7.5 | ||
| 2020-06-04 | CVE-2020-13804 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows information disclosure of a hardcoded username and password in the DocuSign plugin. | Phantompdf, Reader | 9.8 | ||
| 2020-06-04 | CVE-2020-13805 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has brute-force attack mishandling because the CAS service lacks a limit on login failures. | Phantompdf, Reader | 9.8 | ||
| 2020-06-04 | CVE-2020-13806 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has a use-after-free because of JavaScript execution after a deletion or close operation. | Phantompdf, Reader | 7.5 | ||
| 2020-06-04 | CVE-2020-13807 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has circular reference mishandling that causes a loop. | Phantompdf, Reader | 7.5 | ||
| 2020-06-04 | CVE-2020-13808 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via crafted cross-reference stream data. | Phantompdf, Reader | 7.5 | ||
| 2020-06-04 | CVE-2020-13809 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via long strings in the content stream. | Phantompdf, Reader | 7.5 | ||
| 2020-06-04 | CVE-2020-13810 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows signature validation bypass via a modified file or a file with non-standard signatures. | Phantompdf, Reader | 7.5 | ||
| 2020-06-04 | CVE-2020-13814 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It has a use-after-free via a document that lacks a dictionary. | Phantompdf, Reader | 9.8 | ||
| 2020-06-04 | CVE-2020-13815 | An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It allows stack consumption via a loop of an indirect object reference. | Phantompdf, Reader | 7.5 |