Vulnerability Details CVE-2022-25108
Foxit PDF Reader and Editor before 11.2.1 and PhantomPDF before 10.1.7 allow a NULL pointer dereference during PDF parsing because the pointer is used without proper validation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.0%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
References
Products affected by CVE-2022-25108
-
cpe:2.3:a:foxit:pdf_editor:-
-
cpe:2.3:a:foxit:pdf_editor:10.1.6.37749
-
cpe:2.3:a:foxit:pdf_editor:11.0.0
-
cpe:2.3:a:foxit:pdf_editor:11.0.0.49893
-
cpe:2.3:a:foxit:pdf_editor:11.0.1.0719
-
cpe:2.3:a:foxit:pdf_editor:11.1
-
cpe:2.3:a:foxit:pdf_editor:11.2.0.53415
-
cpe:2.3:a:foxit:pdf_reader:-
-
cpe:2.3:a:foxit:pdf_reader:10.1.0.37527
-
cpe:2.3:a:foxit:pdf_reader:10.1.3.37598
-
cpe:2.3:a:foxit:pdf_reader:10.1.4.37651
-
cpe:2.3:a:foxit:pdf_reader:11.0.0.49893
-
cpe:2.3:a:foxit:pdf_reader:11.0.1.0719
-
cpe:2.3:a:foxit:pdf_reader:11.0.1.49938
-
cpe:2.3:a:foxit:pdf_reader:11.1
-
cpe:2.3:a:foxit:pdf_reader:11.1.0.52543
-
cpe:2.3:a:foxit:pdf_reader:8.3.2.25013
-
cpe:2.3:a:foxit:pdf_reader:9.0.1.1049
-
cpe:2.3:o:microsoft:windows:-