CVE-2021-33795
First published: Fri Jul 09 2021(Updated: )
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 produce incorrect PDF document signatures because the certificate name, document owner, and signature author are mishandled.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Foxitsoftware Foxit Reader | <10.1.4 | |
| Foxitsoftware Phantompdf | <10.1.4 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2021-33795.
Which software versions are affected by this vulnerability?
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 are affected by this vulnerability.
What is the severity rating of this vulnerability?
This vulnerability has a severity rating of 5.5, which is considered medium.
What is the CWE ID associated with this vulnerability?
The CWE ID associated with this vulnerability is 755.
How can I fix this vulnerability?
To fix this vulnerability, update your Foxit Reader or PhantomPDF software to version 10.1.4 or later.
- agent/type
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/foxitsoftware
- canonical/foxitsoftware foxit reader
- canonical/foxitsoftware phantompdf