Vulnerabilities > CVE-2019-20827 - Out-of-bounds Write vulnerability in Foxitsoftware Phantompdf and Reader

CVSS 7.5 - HIGH

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

foxitsoftware

CWE-787

NVD

Published: 2020-06-04

Updated: 2020-06-04

Summary

An issue was discovered in Foxit PhantomPDF Mac 3.3 and Foxit Reader for Mac before 3.3. It allows stack consumption because of interaction between ICC-Based color space and Alternate color space.

Vulnerable Configurations

Part	Description	Count
Application	Foxitsoftware Foxitsoftware Phantompdf * Foxitsoftware Reader *	2

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.foxitsoftware.com/support/security-bulletins.php