Pdf-Xchange Editor vulnerabilities
289 known vulnerabilities affecting pdf-xchange/pdf-xchange_editor.
Total CVEs
289
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH166MEDIUM106LOW17
Vulnerabilities
Page 8 of 15
CVE-2022-42371P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42371 [HIGH] CWE-787 CVE-2022-42371: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42400P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42400 [HIGH] CWE-787 CVE-2022-42400: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files. Crafted data in a PDF file can trigger a writ
nvd
CVE-2022-41151P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41151 [HIGH] CWE-787 CVE-2022-41151: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-41143P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41143 [HIGH] CWE-787 CVE-2022-41143: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-41144P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41144 [HIGH] CWE-787 CVE-2022-41144: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42372P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42372 [HIGH] CWE-125 CVE-2022-42372: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a read
nvd
CVE-2022-42373P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42373 [HIGH] CWE-787 CVE-2022-42373: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42399P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42399 [HIGH] CWE-125 CVE-2022-42399: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files. Crafted data in a PDF file can trigger a read
nvd
CVE-2022-41150P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41150 [HIGH] CWE-125 CVE-2022-41150: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a read
nvd
CVE-2022-41147P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41147 [HIGH] CWE-787 CVE-2022-41147: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42370P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42370 [HIGH] CWE-787 CVE-2022-42370: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-41149P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41149 [HIGH] CWE-787 CVE-2022-41149: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-41152P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41152 [HIGH] CWE-125 CVE-2022-41152: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a read
nvd
CVE-2022-41148P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-41148 [HIGH] CWE-787 CVE-2022-41148: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42394P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.363.02023-01-26
CVE-2022-42394 [HIGH] CWE-787 CVE-2022-42394: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42405P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42405 [HIGH] CWE-122 CVE-2022-42405: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of EMF files. The issue results from the lack of proper val
nvd
CVE-2022-42378P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.363.02023-01-26
CVE-2022-42378 [HIGH] CWE-787 CVE-2022-42378: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42382P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.363.02023-01-26
CVE-2022-42382 [HIGH] CWE-787 CVE-2022-42382: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a writ
nvd
CVE-2022-42379P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.363.02023-01-26
CVE-2022-42379 [HIGH] CWE-125 CVE-2022-42379: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. Crafted data in a U3D file can trigger a read
nvd
CVE-2022-42410P3HIGHCVSS 7.8fixed in 9.5.366.0v9.4.362.02023-01-26
CVE-2022-42410 [HIGH] CWE-787 CVE-2022-42410: This vulnerability allows remote attackers to execute arbitrary code on affected installations of PD
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PGM files. Crafted data in a PGM file can trigger a writ
nvd