NULL Pointer Dereference Vulnerability in Foxit Reader and PhantomPDF
CVE-2020-26536
5.5MEDIUM
Summary
A vulnerability exists in Foxit Reader and PhantomPDF that allows an attacker to exploit a NULL pointer dereference issue. This occurs when a specially crafted PDF document is processed, potentially leading to application instability or crashes. It is crucial for users of affected versions to apply the latest security updates to mitigate this risk.
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved