Vulnerabilities > CVE-2018-16303 - XXE vulnerability in Tracker-Software Pdf-Xchange Editor

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
tracker-software
CWE-611

Summary

PDF-XChange Editor through 7.0.326.1 allows remote attackers to cause a denial of service (resource consumption) via a crafted x:xmpmeta structure, a related issue to CVE-2003-1564.

Vulnerable Configurations

Part Description Count
Application
Tracker-Software
44