CVE-2019-14214

Name of the Vulnerable Software and Affected Versions Foxit PhantomPDF versions prior to 8.3.10

Description An issue was discovered where the application could be exposed to a JavaScript Denial of Service when deleting pages in a document that contains only one page by calling a t.hidden = true function.

Recommendations For versions prior to 8.3.10, update to version 8.3.10 or later to resolve the issue. As a temporary workaround, consider avoiding the deletion of pages in documents with only one page to minimize the risk of exploitation.