CVE-2019-14211

An issue was discovered in Foxit PhantomPDF before 8.3.11. The application could crash due to the lack of proper validation of the existence of an object prior to performing operations on that object when executing JavaScript.

Published: Jul 21, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-14211
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
foxitsoftware / phantompdf	-	8.3.11

http://www.securityfocus.com/bid/109358
https://www.foxitsoftware.com/support/security-bulletins.php

Vulnerability Database

290,301

CVE-2019-14211