vulnerability

Foxit Reader: Information Exposure (CVE-2018-17781)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:P/I:N/A:N)	Sep 29, 2018	Jan 24, 2020	Mar 7, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

Sep 29, 2018

Added

Jan 24, 2020

Modified

Mar 7, 2024

Description

Foxit PhantomPDF and Reader before 9.3 allow remote attackers to trigger Uninitialized Object Information Disclosure because creation of ArrayBuffer and DataView objects is mishandled.

Solution

foxit-reader-upgrade-latest

References

CVE-2018-17781
https://attackerkb.com/topics/CVE-2018-17781
URL-http://www.securitytracker.com/id/1041769
URL-https://www.foxitsoftware.com/support/security-bulletins.php

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today