Arbitrary Code Execution in Foxit Reader and PhantomPDF
CVE-2020-26538

7.8HIGH

Key Information:

Vendor: Foxit
Status: Foxit Reader; PhantomPDF
Vendor: CVE Published:; 2 October 2020

What is CVE-2020-26538?

A vulnerability in Foxit Reader and PhantomPDF allows attackers to execute arbitrary code by exploiting a Trojan horse taskkill.exe if located in the current working directory. This occurs in versions prior to 10.1, enabling potential unauthorized access to the system. Foxit Software has advised users to update to the latest version to mitigate this risk.

References

https://www.foxitsoftware.com/support/security-bulletins....

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 2, 2020
Vulnerability Reserved
Oct 2, 2020