Data Mishandling Vulnerability in 3D Plugin for Foxit Software Products
CVE-2019-20831

7.5HIGH

Key Information:

Vendor
Foxit
Status
Vendor
CVE Published:
4 June 2020

Summary

A vulnerability exists in the 3D Plugin Beta for Foxit Reader and PhantomPDF, where improper handling of void data can lead to application crashes. This issue affects specific versions prior to 9.5.0.20733, potentially impacting users who rely on these tools for handling 3D PDF content. It is essential for users to apply updates to maintain the integrity of their software and ensure a secure working environment.

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.