CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.

CVSS v3 8.8 HIGH
CVSS v2.0 6.8 MEDIUM

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://talosintelligence.com/vulnerability_reports/TALOS-2019-0793	Exploit Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:foxitsoftware:phantompdf::::::::
	cpe:2.3:a:foxitsoftware:reader::::::::

History

19 Apr 2022, 18:16

Type	Values Removed	Values Added
CWE	~~CWE-755~~	CWE-770

Information

Published : 2019-10-02 16:15

Updated : 2023-12-10 13:13

NVD link : CVE-2019-5031

Mitre link : CVE-2019-5031

CVE.ORG link : CVE-2019-5031

JSON object : View

Products Affected

foxitsoftware

reader
phantompdf

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

CWE-703

Improper Check or Handling of Exceptional Conditions

{"id": "CVE-2019-5031", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}], "cvssMetricV30": [{"type": "Secondary", "source": "talos-cna@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2019-10-02T16:15:14.350", "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2019-0793", "tags": ["Exploit", "Third Party Advisory"], "source": "talos-cna@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-770"}]}, {"type": "Secondary", "source": "talos-cna@cisco.com", "description": [{"lang": "en", "value": "CWE-703"}]}], "descriptions": [{"lang": "en", "value": "An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability."}, {"lang": "es", "value": "Se presenta una vulnerabilidad de corrupci\u00f3n de memoria explotable en el motor de JavaScript de Foxit PDF Reader del Software Foxit , versi\u00f3n 9.4.1.16828. Un documento PDF especialmente dise\u00f1ado puede desencadenar una condici\u00f3n de falta de memoria que no es manejada apropiadamente, resultando en una ejecuci\u00f3n de c\u00f3digo arbitrario. Un atacante necesita enga\u00f1ar al usuario para que abra el archivo malicioso para activar esta vulnerabilidad. Si la extensi\u00f3n del plugin del navegador est\u00e1 habilitada, visitando un sitio malicioso tambi\u00e9n puede desencadenar la vulnerabilidad."}], "lastModified": "2022-06-07T18:40:44.453", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:foxitsoftware:phantompdf:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22640335-97F3-4F7D-8814-640E7FC925E7", "versionEndIncluding": "9.4.1.16828"}, {"criteria": "cpe:2.3:a:foxitsoftware:reader:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B840A8F-7934-46E0-83E7-A64A712C1783", "versionEndIncluding": "9.4.1.16828"}], "operator": "OR"}]}], "sourceIdentifier": "talos-cna@cisco.com"}