Home

CVE-2018-18688

Description

The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, an Incremental Saving vulnerability exists in multiple products. When an attacker uses the Incremental Saving feature to add pages or annotations, Body Updates are displayed to the user without any action by the signature-validation logic. This affects Foxit Reader before 9.4 and PhantomPDF before 8.3.9 and 9.x before 9.4. It also affects LibreOffice, Master PDF Editor, Nitro Pro, Nitro Reader, Nuance Power PDF Standard, PDF Editor 6 Pro, PDFelement6 Pro, PDF Studio Viewer 2018, PDF Studio Pro, Perfect PDF 10 Premium, and Perfect PDF Reader.

Risk Information

Base Score
5.3
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
0.002

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2018-3956,CVE-2018-18688,CVE-2018-18689 are fixed in Foxit PhantomPDF 8.3.9Windows
Vulnerabilities CVE-2018-3956,CVE-2018-18688,CVE-2018-18689 are fixed in Foxit Reader (9.4.1.16828)Windows
Vulnerabilities CVE-2018-3956,CVE-2018-18688,CVE-2018-18689 are fixed in Foxit Reader (9.4.0)Windows
Vulnerabilities CVE-2018-3956,CVE-2018-18688,CVE-2018-18689 are fixed in Foxit Reader Enterprise (9.4.1.16828)Windows
Vulnerabilities CVE-2018-3956,CVE-2018-18688,CVE-2018-18689 are fixed in Foxit Reader Enterprise (9.4.0)Windows
Vulnerabilities CVE-2018-3956,CVE-2018-18688,CVE-2018-18689 are fixed in Foxit PhantomPDF (9.4.0.16811)Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 8 (ML) 8.3.9Windows
Vulnerabilities CVE-2018-18688 are affected in Foxit PhantomPDF 8 (ML) 9.3Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (EXE) 8.3.9Windows
Vulnerabilities CVE-2018-18688 are affected in Foxit PhantomPDF 9 (EXE) 9.3Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (ML) (EXE) 8.3.9Windows
Vulnerabilities CVE-2018-18688 are affected in Foxit PhantomPDF 9 (ML) (EXE) 9.3Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (ML) (MSI) 8.3.9Windows
Vulnerabilities CVE-2018-18688 are affected in Foxit PhantomPDF 9 (ML) (MSI) 9.3Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (MSI) 8.3.9Windows
Vulnerabilities CVE-2018-18688 are affected in Foxit PhantomPDF 9 (MSI) 9.3Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF Slim 8.3.9Windows
Vulnerabilities CVE-2018-18688 are affected in Foxit PhantomPDF Slim 9.3Windows
Vulnerabilities CVE-2018-18688 are affected in Foxit Reader Enterprise 9.4Windows
Vulnerabilities CVE-2018-16858,CVE-2018-18688 are affected in LibreOffice (x64) 6.0.6.2Windows
Vulnerabilities CVE-2018-18688 are affected in LibreOffice (x64) 6.1.3.2Windows
Vulnerabilities CVE-2018-16858,CVE-2018-18688 are affected in LibreOffice 6.0.6.2Windows
Vulnerabilities CVE-2018-18688 are affected in LibreOffice 6.1.3.2Windows
Vulnerabilities CVE-2018-18688 are affected in Master PDF Editor 5 (MSI) (x64) 5.1.12Windows
Vulnerabilities CVE-2018-18688 are affected in Master PDF Editor 5 (MSI) (x64) 5.1.68Windows
Vulnerabilities CVE-2018-18688,CVE-2019-5005,CVE-2019-5006,CVE-2019-5007 are affected in Foxit PhantomPDF 8 (ML) 9.3Windows
Vulnerabilities CVE-2018-18688,CVE-2019-5005,CVE-2019-5006,CVE-2019-5007 are affected in Foxit PhantomPDF 9 (EXE) 9.3Windows
Vulnerabilities CVE-2018-18688,CVE-2019-5005,CVE-2019-5006,CVE-2019-5007 are affected in Foxit PhantomPDF 9 (ML) (EXE) 9.3Windows
Vulnerabilities CVE-2018-18688,CVE-2019-5005,CVE-2019-5006,CVE-2019-5007 are affected in Foxit PhantomPDF 9 (ML) (MSI) 9.3Windows
Vulnerabilities CVE-2018-18688,CVE-2019-5005,CVE-2019-5006,CVE-2019-5007 are affected in Foxit PhantomPDF 9 (MSI) 9.3Windows
Vulnerabilities CVE-2018-18688,CVE-2019-5005,CVE-2019-5006,CVE-2019-5007 are affected in Foxit PhantomPDF Slim 9.3Windows
Multiple vulnerabilities are fixed in Foxit Reader (9.4.1.16828)Windows
Multiple vulnerabilities are fixed in Foxit Reader Enterprise (9.4.1.16828)Windows
Multiple vulnerabilities are fixed in Foxit Reader (9.4.0)Windows
Multiple vulnerabilities are fixed in Foxit Reader Enterprise (9.4.0)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-311625Foxit PhantomPDF 8 (8.3.12.47136)
PATCH-308917Foxit Reader (9.4.1.16828)
PATCH-308710Foxit Reader (9.4.0)
PATCH-308925Foxit Reader Enterprise (9.4.1.16828)
PATCH-308712Foxit Reader Enterprise (9.4.0)
PATCH-308755Foxit PhantomPDF (9.4.0.16811)
PATCH-311706Foxit PhantomPDF 8 ML (8.3.12.47136)
PATCH-311706Foxit PhantomPDF 8 ML (8.3.12.47136)
PATCH-317726Foxit PhantomPDF 9 (EXE) (9.7.5.29616)
PATCH-317726Foxit PhantomPDF 9 (EXE) (9.7.5.29616)
PATCH-317727Foxit PhantomPDF 9 (ML) (EXE) (9.7.5.29616)
PATCH-317727Foxit PhantomPDF 9 (ML) (EXE) (9.7.5.29616)
PATCH-317728Foxit PhantomPDF 9 (ML) (MSI) (9.7.5.29616)
PATCH-317728Foxit PhantomPDF 9 (ML) (MSI) (9.7.5.29616)
PATCH-317729Foxit PhantomPDF 9 (MSI) (9.7.5.29616)
PATCH-317729Foxit PhantomPDF 9 (MSI) (9.7.5.29616)
PATCH-306313Foxit PhantomPDF (MSI) (8.3.2) (Formerly Foxit PhantomPDF Slim)
PATCH-306313Foxit PhantomPDF (MSI) (8.3.2) (Formerly Foxit PhantomPDF Slim)
PATCH-341798Foxit PDF Reader (MSI) (2024.3.0.26795) (Formerly Foxit Reader Enterprise)
PATCH-334075LibreOffice (x64) (7.5.8)
PATCH-334075LibreOffice (x64) (7.5.8)
PATCH-334074LibreOffice (7.5.8)
PATCH-334074LibreOffice (7.5.8)
PATCH-349434Master PDF Editor 5 (MSI) (x64) (5.9.90)
PATCH-349434Master PDF Editor 5 (MSI) (x64) (5.9.90)
PATCH-317726Foxit PhantomPDF 9 (EXE) (9.7.5.29616)
PATCH-317727Foxit PhantomPDF 9 (ML) (EXE) (9.7.5.29616)
PATCH-317728Foxit PhantomPDF 9 (ML) (MSI) (9.7.5.29616)
PATCH-317729Foxit PhantomPDF 9 (MSI) (9.7.5.29616)
PATCH-347386Foxit Reader (2025.1.0.27937)
PATCH-347385Foxit PDF Reader (MSI) (2025.1.0.27937)
PATCH-347386Foxit Reader (2025.1.0.27937)
PATCH-347385Foxit PDF Reader (MSI) (2025.1.0.27937)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234