CVE-2018-20316
published 2021-01-07CVE-2018-20316: Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a proxyDoAction race condition that can cause a stack-based buffer overflow or an…
high8.1CVSS 3.1
AVNACHPRNUINSUCHIHAH
Foxit Reader before 9.5, and PhantomPDF before 8.3.10 and 9.x before 9.5, has a proxyDoAction race condition that can cause a stack-based buffer overflow or an out-of-bounds read, a different issue than CVE-2018-20310 because of a different opcode.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| foxitsoftware | phantompdf | < 8.3.10 | 8.3.10 |
| foxitsoftware | phantompdf | >= 9.0 < 9.5 | 9.5 |
| foxitsoftware | reader | < 9.5 | 9.5 |