Vulnerabilities > Foxitsoftware > Phantompdf > 8.3.9.41099

DATE CVE VULNERABILITY TITLE RISK
2018-04-24 CVE-2017-17557 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Foxitsoftware Phantompdf
In Foxit Reader before 9.1 and Foxit PhantomPDF before 9.1, a flaw exists within the parsing of the BITMAPINFOHEADER record in BMP files.
network
low complexity
foxitsoftware CWE-119
8.8
8.8
2018-04-23 CVE-2018-10303 Use After Free vulnerability in Foxitsoftware Phantompdf
A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-y0nqfutlf3.
network
low complexity
foxitsoftware CWE-416
8.8
8.8
2018-04-23 CVE-2018-10302 Use After Free vulnerability in Foxitsoftware Phantompdf
A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-jyb51g3mv9.
local
low complexity
foxitsoftware CWE-416
7.8
7.8