Test ID:	1.3.6.1.4.1.25623.1.0.834092
Category:	General
Title:	Foxit PhantomPDF Multiple Vulnerabilities (June-6 2024)
Summary:	Foxit PhantomPDF is prone to multiple; vulnerabilities.
Description:	Summary: Foxit PhantomPDF is prone to multiple vulnerabilities. Vulnerability Insight: These vulnerabilities exist: - CVE-2023-38105: An out-of-bounds read information disclosure vulnerability. - CVE-2023-28744: An use-after-free vulnerability in the JavaScript engine. Vulnerability Impact: Successful exploitation allows an attacker to execute remote code and disclose information. Affected Software/OS: Foxit PhantomPDF version 12.x through 12.1.2.15332, 11.x through 11.2.6.53790, 10.1.12.37872 and prior on Windows. Solution: Update to version 11.2.7 or 12.1.3 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-28744 https://talosintelligence.com/vulnerability_reports/TALOS-2023-1739 Common Vulnerability Exposure (CVE) ID: CVE-2023-38111 ZDI-23-989 https://www.zerodayinitiative.com/advisories/ZDI-23-989/ vendor-provided URL https://www.foxit.com/support/security-bulletins.html Common Vulnerability Exposure (CVE) ID: CVE-2023-38107 ZDI-23-985 https://www.zerodayinitiative.com/advisories/ZDI-23-985/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38109 ZDI-23-987 https://www.zerodayinitiative.com/advisories/ZDI-23-987/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38113 ZDI-23-991 https://www.zerodayinitiative.com/advisories/ZDI-23-991/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38114 ZDI-23-992 https://www.zerodayinitiative.com/advisories/ZDI-23-992/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38112 ZDI-23-990 https://www.zerodayinitiative.com/advisories/ZDI-23-990/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38110 ZDI-23-988 https://www.zerodayinitiative.com/advisories/ZDI-23-988/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38115 ZDI-23-993 https://www.zerodayinitiative.com/advisories/ZDI-23-993/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38117 ZDI-23-995 https://www.zerodayinitiative.com/advisories/ZDI-23-995/ Common Vulnerability Exposure (CVE) ID: CVE-2023-27379 https://talosintelligence.com/vulnerability_reports/TALOS-2023-1756 Common Vulnerability Exposure (CVE) ID: CVE-2023-33866 https://talosintelligence.com/vulnerability_reports/TALOS-2023-1757 Common Vulnerability Exposure (CVE) ID: CVE-2023-32664 https://talosintelligence.com/vulnerability_reports/TALOS-2023-1795 Common Vulnerability Exposure (CVE) ID: CVE-2023-33876 https://talosintelligence.com/vulnerability_reports/TALOS-2023-1796 Common Vulnerability Exposure (CVE) ID: CVE-2023-38105 ZDI-23-983 https://www.zerodayinitiative.com/advisories/ZDI-23-983/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38106 ZDI-23-984 https://www.zerodayinitiative.com/advisories/ZDI-23-984/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38108 ZDI-23-986 https://www.zerodayinitiative.com/advisories/ZDI-23-986/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38116 ZDI-23-994 https://www.zerodayinitiative.com/advisories/ZDI-23-994/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38119 ZDI-23-997 https://www.zerodayinitiative.com/advisories/ZDI-23-997/ Common Vulnerability Exposure (CVE) ID: CVE-2023-38118 ZDI-23-996 https://www.zerodayinitiative.com/advisories/ZDI-23-996/
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.