Описание
An issue was discovered in Foxit 3D Plugin Beta before 9.4.0.16807 for Foxit Reader and PhantomPDF. The application could encounter a Use-After-Free or Type Confusion and crash during handling of certain PDF files that embed specifically crafted 3D content, due to the use of a wild pointer.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 9.4.0.16807 (исключая)Версия до 9.4.0.16807 (исключая)
Одновременно
Одно из
cpe:2.3:a:foxitsoftware:3d:*:*:*:*:*:foxit_reader:*:*
cpe:2.3:a:foxitsoftware:3d:*:*:*:*:*:phantompdf:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00043
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-416
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
An issue was discovered in Foxit 3D Plugin Beta before 9.4.0.16807 for Foxit Reader and PhantomPDF. The application could encounter a Use-After-Free or Type Confusion and crash during handling of certain PDF files that embed specifically crafted 3D content, due to the use of a wild pointer.
EPSS
Процентиль: 13%
0.00043
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-416