exploitDog

GHSA-ghjc-f7r9-q2f2

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.

Ссылки

EPSS

Процентиль: 5%

0.00023

Низкий

CVE ID

Связанные уязвимости

CVE-2021-38573

CVSS3: 9.8

nvd

больше 4 лет назад

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.

EPSS

Процентиль: 5%

0.00023

Низкий

CVE ID