CVE-2018-18689

The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, a Signature Wrapping vulnerability exists in multiple products. An attacker can use /ByteRange and xref manipulations that are not detected by the signature-validation logic. This affects Foxit Reader before 9.4 and PhantomPDF before 8.3.9 and 9.x before 9.4. It also affects eXpert PDF 12 Ultimate, Expert PDF Reader, Nitro Pro, Nitro Reader, PDF Architect 6, PDF Editor 6 Pro, PDF Experte 9 Ultimate, PDFelement6 Pro, PDF Studio Viewer 2018, PDF Studio Pro, PDF-XChange Editor and Viewer, Perfect PDF 10 Premium, Perfect PDF Reader, Soda PDF, and Soda PDF Desktop.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
avanquestexpert_pdf_ultimate
12.0.20
avanquestpdf_experte_ultimate
9.0.270
foxitsoftwarefoxit_reader
9.1.0
foxitsoftwarefoxit_reader
9.2.0.9297
foxitsoftwarefoxit_reader
9.3.0.10826
gonitronitro_pro
11.0.3.173
gonitronitro_reader
5.5.9.2
iskysoftpdf_editor_6
6.4.2.3521
iskysoftpdfelement6
6.8.0.3523
iskysoftpdfelement6
6.8.4.3921
pdf-xchangepdf-xchange_editor
7.0.237.1
pdf-xchangepdf-xchange_editor
7.0.326
pdfforgepdf_architect
6.0.37
pdfforgepdf_architect
6.1.24.1862
qoppapdf_studio
12.0.7
qoppapdf_studio_viewer_2018
2018.0.1
qoppapdf_studio_viewer_2018
2018.2.0
sodapdfsoda_pdf
9.3.17
sodapdfsoda_pdf_desktop
10.2.09
sodapdfsoda_pdf_desktop
10.2.16.1217
soft-xpansionperfect_pdf_10
10.0.0.1
soft-xpansionperfect_pdf_reader
13.0.3
soft-xpansionperfect_pdf_reader
13.1.5
tracker-softwarepdf-xchange_viewer
2.5
visagesoftexpert_pdf_reader
9.0.180
foxitsoftwarefoxit_reader
9.1.0
foxitsoftwarefoxit_reader
9.2.0
iskysoftpdf_editor_6
6.6.2.3315
iskysoftpdf_editor_6
6.7.6.3399
iskysoftpdfelement6
6.7.1.3355
iskysoftpdfelement6
6.7.6.3399
qoppapdf_studio
12.0.7
qoppapdf_studio_viewer_2018
2018.0.1
qoppapdf_studio_viewer_2018
2018.2.0
foxitsoftwarefoxit_reader
9.1.0
foxitsoftwarefoxit_reader
9.2.0
qoppapdf_studio
12.0.7
qoppapdf_studio_viewer_2018
2018.0.1
qoppapdf_studio_viewer_2018
2018.2.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://pdf-insecurity.org/signature/evaluation_2018.html
https://pdf-insecurity.org/signature/signature.html
https://www.foxitsoftware.com/support/security-bulletins.php
https://www.pdfa.org/recently-identified-pdf-digital-signature-vulnerabilities/
https://pdf-insecurity.org/signature/evaluation_2018.html
https://pdf-insecurity.org/signature/signature.html
https://www.foxitsoftware.com/support/security-bulletins.php
https://www.pdfa.org/recently-identified-pdf-digital-signature-vulnerabilities/