{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-15T12:11:04.930","vulnerabilities":[{"cve":{"id":"CVE-2018-20248","sourceIdentifier":"cve@checkpoint.com","published":"2018-12-24T18:29:00.350","lastModified":"2024-11-21T04:01:09.903","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"In Foxit Quick PDF Library (all versions prior to 16.12), issue where loading a malformed or malicious PDF containing invalid xref table pointers or invalid xref table data using the LoadFromFile, LoadFromString, LoadFromStream, DAOpenFile or DAOpenFileReadOnly functions may result in an access violation caused by out of bounds memory access."},{"lang":"es","value":"En Foxit Quick PDF Library (todas las versiones anteriores a la 16.12), hay un problema al cargar un PDF mal formado o malicioso que contiene punteros o datos de tabla xref inválidos. El uso de las funciones LoadFromFile, LoadFromString, LoadFromStream, DAOpenFile o DAOpenFileReadOnly podría resultar en una violación de acceso provocada por un acceso a la memoria fuera de límites."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:P/I:P/A:P","baseScore":7.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"cve@checkpoint.com","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-119"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:foxitsoftware:quick_pdf_library:*:*:*:*:*:*:*:*","versionEndExcluding":"16.12","matchCriteriaId":"7755DB64-8892-44BE-9CC1-664DF7830F19"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/106306","source":"cve@checkpoint.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.foxitsoftware.com/support/security-bulletins.php","source":"cve@checkpoint.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/106306","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://www.foxitsoftware.com/support/security-bulletins.php","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}