CVE-2018-18689
MEDIUMMultiple PDF Products - Signature Wrapping via /ByteRange and xref Manipulation
Title source: llmDescription
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, a Signature Wrapping vulnerability exists in multiple products. An attacker can use /ByteRange and xref manipulations that are not detected by the signature-validation logic. This affects Foxit Reader before 9.4 and PhantomPDF before 8.3.9 and 9.x before 9.4. It also affects eXpert PDF 12 Ultimate, Expert PDF Reader, Nitro Pro, Nitro Reader, PDF Architect 6, PDF Editor 6 Pro, PDF Experte 9 Ultimate, PDFelement6 Pro, PDF Studio Viewer 2018, PDF Studio Pro, PDF-XChange Editor and Viewer, Perfect PDF 10 Premium, Perfect PDF Reader, Soda PDF, and Soda PDF Desktop.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
https://www.foxitsoftware.com/support/security-bulletins.php
Third Party Advisory x_refsource_misc
https://pdf-insecurity.org/signature/evaluation_2018.html
Third Party Advisory x_refsource_misc
https://pdf-insecurity.org/signature/signature.html
Third Party Advisory x_refsource_misc
https://www.pdfa.org/recently-identified-pdf-digital-signature-vulnerabilities/
Scores
CVSS v3
5.3
EPSS
0.0001
EPSS Percentile
0.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-347
Status
published
Products (30)
avanquest/expert_pdf_ultimate
12.0.20
avanquest/pdf_experte_ultimate
9.0.270
foxitsoftware/foxit_reader
9.1.0
foxitsoftware/foxit_reader
9.2.0.9297
foxitsoftware/foxit_reader
9.3.0.10826
foxitsoftware/foxit_reader
9.2.0
gonitro/nitro_pro
11.0.3.173
gonitro/nitro_reader
5.5.9.2
iskysoft/pdf_editor_6
6.4.2.3521
iskysoft/pdf_editor_6
6.6.2.3315
... and 20 more
Published
Jan 07, 2021
Tracked Since
Feb 18, 2026