Описание
A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR.
Ссылки
- Technical DescriptionThird Party Advisory
- Technical DescriptionThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:foxitsoftware:reader:8.0.2.805:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.13461
Средний
6.8 Medium
CVSS3
3.3 Low
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125
Связанные уязвимости
CVSS3: 3.3
github
больше 3 лет назад
A large out-of-bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR.
EPSS
Процентиль: 94%
0.13461
Средний
6.8 Medium
CVSS3
3.3 Low
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-125