exploitDog

GHSA-vq4h-422r-cp5j

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing a launch action. An attacker can leverage this to gain remote code execution.

A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing a launch action. An attacker can leverage this to gain remote code execution.

Ссылки

EPSS

Процентиль: 58%

0.00365

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2018-19450

CVSS3: 7.8

nvd

больше 6 лет назад

A command injection can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing a launch action. An attacker can leverage this to gain remote code execution.

EPSS

Процентиль: 58%

0.00365

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-77