Lucene search
MitreCVELIST:CVE-2020-35931HistoryDec 31, 2020 - 8:14 p.m.
CVE-2020-35931
2020-12-3120:14:11
mitre
www.cve.org
1
An issue was discovered in Foxit Reader before 10.1.1 (and before 4.1.1 on macOS) and PhantomPDF before 9.7.5 and 10.x before 10.1.1 (and before 4.1.1 on macOS). An attacker can spoof a certified PDF document via an Evil Annotation Attack because the products fail to consider a null value for a Subtype entry of the Annotation dictionary, in an incremental update.
Related
cve
cve
CVE-2020-35931
2020-12-31 21:15:12
nessus
nessus
Foxit Reader < 4.1 PDF Spoofing (macOS)
2021-02-19 00:00:00
Foxit PhantomPDF < 4.1.3 PDF Spoofing (macOS)
2021-02-19 00:00:00
prion
prion
Code injection
2020-12-31 21:15:00
nvd
nvd
CVE-2020-35931
2020-12-31 21:15:12
threatpost
threatpost
PDF Feature βCertifiedβ Widely Vulnerable to Attack
2021-05-26 20:14:30
thn
thn
Researchers Demonstrate 2 New Hacks to Modify Certified PDF Documents
2021-05-29 08:34:00