Skip to main content

Pdf Xchange Viewer

3 CVEs product

Monthly

CVE-2018-6462 HIGH PATCH This Week

Tracker PDF-XChange Viewer and Viewer AX SDK before 2.5.322.8 mishandle conversion from YCC to RGB colour spaces by calculating on the basis of 1 bpc instead of 8 bpc, which might allow remote. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption RCE Buffer Overflow Pdf Xchange Viewer Viewer Ax Sdk
NVD
CVSS 3.0
7.8
EPSS
2.5%
CVE-2017-13056 HIGH POC This Week

The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Pdf Xchange Viewer
NVD Exploit-DB
CVSS 3.0
7.8
EPSS
2.0%
CVE-2013-0729 CRITICAL PATCH Act Now

Heap-based buffer overflow in Tracker Software PDF-XChange before 2.5.208 allows remote attackers to execute arbitrary code via a crafted Define Huffman Table header in a JPEG image file stream in a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

RCE Buffer Overflow Pdf Xchange Viewer
NVD VulDB
CVSS 2.0
9.3
EPSS
8.7%
EPSS 2% CVSS 7.8
HIGH PATCH This Week

Tracker PDF-XChange Viewer and Viewer AX SDK before 2.5.322.8 mishandle conversion from YCC to RGB colour spaces by calculating on the basis of 1 bpc instead of 8 bpc, which might allow remote. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption RCE Buffer Overflow +2
NVD
EPSS 2% CVSS 7.8
HIGH POC This Week

The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Pdf Xchange Viewer
NVD Exploit-DB
EPSS 9% CVSS 9.3
CRITICAL PATCH Act Now

Heap-based buffer overflow in Tracker Software PDF-XChange before 2.5.208 allows remote attackers to execute arbitrary code via a crafted Define Huffman Table header in a JPEG image file stream in a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

RCE Buffer Overflow Pdf Xchange Viewer
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy