CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19447

A stack-based buffer overflow can occur for specially crafted PDF files in Foxit Reader SDK (ActiveX) 5.4.0.1031 when parsing the URI string. An attacker can leverage this to gain remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

Products affected by CVE-2018-19447

Foxitsoftware » Foxit Pdf Sdk Activex » Version: 2.3

cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:2.3
Foxitsoftware » Foxit Pdf Sdk Activex » Version: 3.0

cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:3.0
Foxitsoftware » Foxit Pdf Sdk Activex » Version: 4.0

cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:4.0
Foxitsoftware » Foxit Pdf Sdk Activex » Version: 5.0.0

cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:5.0.0
Foxitsoftware » Foxit Pdf Sdk Activex » Version: 5.0.1.820

cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:5.0.1.820
Foxitsoftware » Foxit Pdf Sdk Activex » Version: 5.4.0.1031

cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:5.4.0.1031
Foxitsoftware » Foxit Pdf Sdk Activex » Version: 5.5.0

cpe:2.3:a:foxitsoftware:foxit_pdf_sdk_activex:5.5.0
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-19447

Products

Pricing

Contact Us