Vulnerabilities > Foxitsoftware > Quick PDF Library

DATE CVE VULNERABILITY TITLE RISK
2018-12-24 CVE-2018-20249 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Foxitsoftware Quick PDF Library
In Foxit Quick PDF Library (all versions prior to 16.12), issue where loading a malformed or malicious PDF containing invalid xref entries using the DAOpenFile or DAOpenFileReadOnly functions may result in an access violation caused by out of bounds memory access.
network
low complexity
foxitsoftware CWE-119
8.8
8.8
2018-12-24 CVE-2018-20248 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Foxitsoftware Quick PDF Library
In Foxit Quick PDF Library (all versions prior to 16.12), issue where loading a malformed or malicious PDF containing invalid xref table pointers or invalid xref table data using the LoadFromFile, LoadFromString, LoadFromStream, DAOpenFile or DAOpenFileReadOnly functions may result in an access violation caused by out of bounds memory access.
network
low complexity
foxitsoftware CWE-119
critical
 9.8
9.8
2018-12-24 CVE-2018-20247 Out-of-bounds Write vulnerability in Foxitsoftware Quick PDF Library
In Foxit Quick PDF Library (all versions prior to 16.12), issue where loading a malformed or malicious PDF containing a recursive page tree structure using the LoadFromFile, LoadFromString or LoadFromStream functions results in a stack overflow.
local
low complexity
foxitsoftware CWE-787
7.8
7.8