CVE-2021-38571

CWE-4273 documents3 sources
Severity
7.8HIGH
EPSS
0.0%
top 90.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Foxitsoftware Foxit ReaderFoxitsoftware Phantompdf
Timeline
PublishedAug 11
Latest updateMay 24

Description

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows DLL hijacking, aka CNVD-C-2021-68000 and CNVD-C-2021-68502.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDfoxitsoftware/phantompdf10.0.0.010.1.4+1

🔴Vulnerability Details

2
GHSA
GHSA-95gh-f9p8-hgvj: An issue was discovered in Foxit Reader and PhantomPDF before 102022-05-24
CVEList
CVE-2021-38571: An issue was discovered in Foxit Reader and PhantomPDF before 102021-08-11
CVE-2021-38571 (HIGH CVSS 7.8) | An issue was discovered in Foxit Re | cvebase.io