Data Mishandling Vulnerability in 3D Plugin for Foxit Software Products
CVE-2019-20831

7.5HIGH

Key Information:

Vendor: Foxit
Status: 3d
Vendor: CVE Published:; 4 June 2020

Summary

A vulnerability exists in the 3D Plugin Beta for Foxit Reader and PhantomPDF, where improper handling of void data can lead to application crashes. This issue affects specific versions prior to 9.5.0.20733, potentially impacting users who rely on these tools for handling 3D PDF content. It is essential for users to apply updates to maintain the integrity of their software and ensure a secure working environment.

References

https://www.foxitsoftware.com/support/security-bulletins.php

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 4, 2020
Vulnerability Reserved
Jun 4, 2020