CVE-2019-17497

MEDIUM

Pdf-xchange Editor < 8.0.330.0 - Insufficiently Protected Credentials

Title source: rule

Description

Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files (a related issue to CVE-2018-4993). For example, an NTLM hash is sent for a link to \\192.168.0.2\C$\file.pdf without user interaction.

Exploits (1)

nomisec WRITEUP

by JM-Lemmi · poc

https://github.com/JM-Lemmi/cve-2019-17497

View Code ZIP pw:eip

References (1)

[Third Party Advisory] https://github.com/ponypot/cve/raw/master/pdfXChangeEditor_FDFInclusions.pdf

Scores

CVSS v3 6.5

EPSS 0.0230

EPSS Percentile 84.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Classification

CWE

CWE-522

Status published

Affected Products (1)

pdf-xchange/pdf-xchange_editor < 8.0.330.0

Timeline

Published Oct 11, 2019

Tracked Since Feb 18, 2026