Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

PDF-XChange — Vulnerabilities & Security Advisories 280

Browse all 280 CVE security advisories affecting PDF-XChange. AI-powered Chinese analysis, POCs, and references for each vulnerability.

PDF-XChange is a widely used document management suite primarily designed for viewing, editing, and annotating PDF files across Windows environments. Despite its utility, the software has accumulated approximately 280 Common Vulnerabilities and Exposures (CVEs), reflecting a significant historical security debt. The majority of these flaws involve remote code execution (RCE) and buffer overflow vulnerabilities, often triggered by malformed or maliciously crafted PDF documents. Additionally, instances of cross-site scripting (XSS) and privilege escalation have been documented, allowing attackers to bypass security controls or execute arbitrary code with elevated permissions. While no single catastrophic incident has defined the product’s public history, the sheer volume of disclosed vulnerabilities indicates persistent issues in input validation and memory management. Users are advised to maintain strict patching schedules to mitigate these known risks associated with the application’s parsing engine.

Top products by PDF-XChange: PDF-XChange Editor
CVE IDTitleCVSSSeverityPublished
CVE-2023-42053 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 5.5 -2024-05-03
CVE-2023-42052 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 5.5 -2024-05-03
CVE-2023-42051 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — PDF-XChange EditorCWE-787 7.8 -2024-05-03
CVE-2023-42050 PDF-XChange Editor EMF File Parsing Use-After-Free Information Disclosure Vulnerability — PDF-XChange EditorCWE-416 5.5 -2024-05-03
CVE-2023-42048 PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability — PDF-XChange EditorCWE-457 5.5 -2024-05-03
CVE-2023-42049 PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 5.5 -2024-05-03
CVE-2023-42047 PDF-XChange Editor JP2 File Parsing Memory Corruption Remote Code Execution Vulnerability — PDF-XChange EditorCWE-119 7.8 -2024-05-03
CVE-2023-42046 PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability — PDF-XChange EditorCWE-457 5.5 -2024-05-03
CVE-2023-42045 PDF-XChange Editor J2K File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — PDF-XChange EditorCWE-125 7.8 -2024-05-03
CVE-2023-42044 PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — PDF-XChange EditorCWE-125 7.8 -2024-05-03
CVE-2023-42043 PDF-XChange Editor PDF File Parsing Memory Corruption Remote Code Execution Vulnerability — PDF-XChange EditorCWE-119 7.8 -2024-05-03
CVE-2023-42042 PDF-XChange Editor App Object Out-Of-Bounds Read Remote Code Execution Vulnerability — PDF-XChange EditorCWE-125 7.8 -2024-05-03
CVE-2023-42040 PDF-XChange Editor mailForm Use-After-Free Code Execution Vulnerability — PDF-XChange EditorCWE-416 7.8 -2024-05-03
CVE-2023-42041 PDF-XChange Editor Annotation Use-After-Free Remote Code Execution Vulnerability — PDF-XChange EditorCWE-416 7.8 -2024-05-03
CVE-2023-40473 PDF-XChange Editor Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 5.5 -2024-05-03
CVE-2023-40472 PDF-XChange Editor JavaScript String Untrusted Pointer Dereference Remote Code Execution Vulnerability — PDF-XChange EditorCWE-822 7.8 -2024-05-03
CVE-2023-40471 PDF-XChange Editor App Untrusted Pointer Dereference Remote Code Execution Vulnerability — PDF-XChange EditorCWE-822 7.8 -2024-05-03
CVE-2023-40470 PDF-XChange Editor JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 5.5 -2024-05-03
CVE-2023-40469 PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 3.3 -2024-05-03
CVE-2023-40468 PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 5.5 -2024-05-03
CVE-2023-39506 PDF-XChange Editor createDataObject Directory Traversal Remote Code Execution Vulnerability — PDF-XChange EditorCWE-22 7.8 -2024-05-03
CVE-2023-39505 PDF-XChange Editor Net.HTTP.requests Exposed Dangerous Function Information Disclosure Vulnerability — PDF-XChange EditorCWE-749 5.5 -2024-05-03
CVE-2023-39504 PDF-XChange Editor OXPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 3.3 -2024-05-03
CVE-2023-39503 PDF-XChange Editor OXPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — PDF-XChange EditorCWE-125 5.5 -2024-05-03
CVE-2023-39502 PDF-XChange Editor OXPS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — PDF-XChange EditorCWE-787 7.8 -2024-05-03
CVE-2023-39501 PDF-XChange Editor OXPS File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability — PDF-XChange EditorCWE-822 7.8 -2024-05-03
CVE-2023-39500 PDF-XChange Editor JPG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — PDF-XChange EditorCWE-787 7.8 -2024-05-03
CVE-2023-39499 PDF-XChange Editor JPG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — PDF-XChange EditorCWE-787 7.8 -2024-05-03
CVE-2023-39498 PDF-XChange Editor JPG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — PDF-XChange EditorCWE-787 7.8 -2024-05-03
CVE-2023-39497 PDF-XChange Editor JPG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability — PDF-XChange EditorCWE-787 7.8 -2024-05-03

This page lists every published CVE security advisory associated with PDF-XChange. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.