CVE-2018-17781
published 2018-09-29CVE-2018-17781: Foxit PhantomPDF and Reader before 9.3 allow remote attackers to trigger Uninitialized Object Information Disclosure because creation of ArrayBuffer and…
high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
Foxit PhantomPDF and Reader before 9.3 allow remote attackers to trigger Uninitialized Object Information Disclosure because creation of ArrayBuffer and DataView objects is mishandled.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxitsoftware | phantompdf | <= 9.2.0.9297 | — |
| foxitsoftware | reader | <= 9.2.0.9297 | — |