cbcvebase.

Pdf-Xchange Pdf-Tools vulnerabilities

172 known vulnerabilities affecting pdf-xchange/pdf-tools.

Total CVEs
172
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH94MEDIUM61LOW17

Vulnerabilities

Page 1 of 9
CVE-2024-27323P3HIGHCVSS 7.5v10.1.1.3812024-04-01
CVE-2024-27323 [HIGH] CWE-295 CVE-2024-27323: PDF-XChange Editor Updater Improper Certificate Validation Remote Code Execution Vulnerability. This PDF-XChange Editor Updater Improper Certificate Validation Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is not required to exploit this vulnerability. The specific flaw exists within the update functionality. The is
nvd
CVE-2023-42041P3HIGHCVSS 7.8v9.5.368.02024-05-03
CVE-2023-42041 [HIGH] CWE-416 CVE-2023-42041: PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw ex
nvd
CVE-2023-39506P3HIGHCVSS 7.8v9.5.367.02024-05-03
CVE-2023-39506 [HIGH] CWE-22 CVE-2023-39506: PDF-XChange Editor createDataObject Directory Traversal Remote Code Execution Vulnerability. This vu PDF-XChange Editor createDataObject Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specif
nvd
CVE-2023-27348P3HIGHCVSS 7.8v9.4.364.02024-05-03
CVE-2023-27348 [HIGH] CWE-416 CVE-2023-27348: PDF-XChange Editor TIF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnera PDF-XChange Editor TIF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific f
nvd
CVE-2025-6644P3HIGHCVSS 7.8v10.5.2.3952025-06-25
CVE-2025-6644 [HIGH] CWE-416 CVE-2025-6644: PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnera PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla
nvd
CVE-2025-6661P3HIGHCVSS 7.8v10.5.2.3952025-06-25
CVE-2025-6661 [HIGH] CWE-416 CVE-2025-6661: PDF-XChange Editor App Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability PDF-XChange Editor App Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exis
nvd
CVE-2025-6640P3HIGHCVSS 7.8v10.5.2.3952025-06-25
CVE-2025-6640 [HIGH] CWE-416 CVE-2025-6640: PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnera PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla
nvd
CVE-2025-6645P3HIGHCVSS 7.8v10.5.2.3952025-06-25
CVE-2025-6645 [HIGH] CWE-416 CVE-2025-6645: PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnera PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla
nvd
CVE-2023-27339P3HIGHCVSS 7.8v9.4.364.02024-05-03
CVE-2023-27339 [HIGH] CWE-787 CVE-2023-27339: PDF-XChange Editor PNG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vu PDF-XChange Editor PNG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The speci
nvd
CVE-2023-27341P3HIGHCVSS 7.8v9.4.362.02024-05-03
CVE-2023-27341 [HIGH] CWE-787 CVE-2023-27341: PDF-XChange Editor TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vu PDF-XChange Editor TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The speci
nvd
CVE-2023-27340P3HIGHCVSS 7.8v9.4.364.02024-05-03
CVE-2023-27340 [HIGH] CWE-787 CVE-2023-27340: PDF-XChange Editor PNG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vu PDF-XChange Editor PNG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The speci
nvd
CVE-2023-27343P3HIGHCVSS 7.8v9.4.364.02024-05-03
CVE-2023-27343 [HIGH] CWE-787 CVE-2023-27343: PDF-XChange Editor EMF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vu PDF-XChange Editor EMF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The speci
nvd
CVE-2023-27342P3HIGHCVSS 7.8v9.4.364.02024-05-03
CVE-2023-27342 [HIGH] CWE-822 CVE-2023-27342: PDF-XChange Editor EMF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerabilit PDF-XChange Editor EMF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
nvd
CVE-2023-42085P3HIGHCVSS 7.8v10.0.1.3712024-05-03
CVE-2023-42085 [HIGH] CWE-122 CVE-2023-42085: PDF-XChange Editor EMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. PDF-XChange Editor EMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The
nvd
CVE-2023-42077P3HIGHCVSS 7.8v10.0.1.3712024-05-03
CVE-2023-42077 [HIGH] CWE-122 CVE-2023-42077: PDF-XChange Editor EMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. PDF-XChange Editor EMF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The
nvd
CVE-2023-42069P3HIGHCVSS 7.8v9.5.368.02024-05-03
CVE-2023-42069 [HIGH] CWE-121 CVE-2023-42069: PDF-XChange Editor PDF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. PDF-XChange Editor PDF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. T
nvd
CVE-2023-42076P3HIGHCVSS 7.8v10.0.1.3712024-05-03
CVE-2023-42076 [HIGH] CWE-122 CVE-2023-42076: PDF-XChange Editor PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. PDF-XChange Editor PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The
nvd
CVE-2023-42083P3HIGHCVSS 7.8v10.0.1.3712024-05-03
CVE-2023-42083 [HIGH] CWE-122 CVE-2023-42083: PDF-XChange Editor JPG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. PDF-XChange Editor JPG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The
nvd
CVE-2023-42062P3HIGHCVSS 7.8v9.5.368.02024-05-03
CVE-2023-42062 [HIGH] CWE-457 CVE-2023-42062: PDF-XChange Editor U3D File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This PDF-XChange Editor U3D File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The sp
nvd
CVE-2023-42059P3HIGHCVSS 7.8v9.5.368.02024-05-03
CVE-2023-42059 [HIGH] CWE-416 CVE-2023-42059: PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnera PDF-XChange Editor U3D File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific f
nvd
Pdf-Xchange Pdf-Tools vulnerabilities | cvebase