Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HFoxitsoftware Foxit Reader
APPFoxitsoftware< 10.1.4Foxitsoftware Phantompdf
APPFoxitsoftware< 10.1.4
π΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2021-38570CRITICAL9.1ten sam produkt
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows attackers to delete arbitrary ...
CVE-2021-38572CRITICAL9.8ten sam produkt
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files bec...
CVE-2021-33793CRITICAL9.8ten sam produkt
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Referenc...
CVE-2021-38568CRITICAL9.8ten sam produkt
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows memory corruption during conve...
CVE-2021-38573CRITICAL9.8ten sam produkt
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files bec...