CVE-2020-11493

In Foxit Reader and PhantomPDF before 10.0.1, and PhantomPDF before 9.7.3, attackers can obtain sensitive information about an uninitialized object because of direct transformation from PDF Object to Stream without concern for a crafted XObject.

View Full Alert

Related Posts

  • CVE-2020-10936

    Sympa before 6.2.56 allows privilege escalation. View Full Alert

  • CVE-2020-10945

    Centreon before 19.10.7 exposes Session IDs in server responses. View Full Alert

  • CVE-2020-10177

    Pillow before 6.2.3 and 7.x before 7.0.1 has multiple out-of-bounds reads in libImaging/FliDecode.c. View Full Alert