Login Sign Up

CVE-2023-42067

5.5 MEDIUM

📋 TL;DR

This vulnerability in PDF-XChange Editor allows remote attackers to read sensitive information from memory when processing malicious JB2 files. Attackers can leverage this information disclosure with other vulnerabilities to potentially execute arbitrary code. Users who open untrusted PDF files containing JB2 images are affected.

💻 Affected Systems

Products:
  • PDF-XChange Editor
Versions: Versions prior to 10.1.1.380
Operating Systems: Windows
Default Config Vulnerable: ⚠️ Yes
Notes: All installations with vulnerable versions are affected when processing JB2 files.

📦 What is this software?

Pdf Tools by Pdf Xchange

View all CVEs affecting Pdf Tools →

Pdf Xchange Editor by Pdf Xchange

View all CVEs affecting Pdf Xchange Editor →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Information disclosure combined with other vulnerabilities could lead to arbitrary code execution in the context of the current user process.

🟠

Likely Case

Sensitive memory contents disclosure, potentially revealing credentials, encryption keys, or other confidential data.

🟢

If Mitigated

Limited information disclosure without code execution if proper sandboxing and memory protections are in place.

🌐 Internet-Facing: MEDIUM - Requires user interaction to open malicious files, but web-based delivery is common.
🏢 Internal Only: MEDIUM - Similar risk internally if users open malicious attachments or files from untrusted sources.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires user interaction to open malicious file. Exploit requires combining with other vulnerabilities for code execution.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 10.1.1.380 and later

Vendor Advisory: https://www.tracker-software.com/support/security-bulletins.html

Restart Required: Yes

Instructions:

1. Download latest version from tracker-software.com 2. Run installer 3. Restart system 4. Verify version is 10.1.1.380 or higher

🔧 Temporary Workarounds

Disable JB2 file processing

windows

Configure PDF-XChange Editor to block JB2 file processing if not required

Application sandboxing

windows

Run PDF-XChange Editor in sandboxed environment to limit impact

🧯 If You Can't Patch

  • Restrict user permissions to limit potential damage from code execution
  • Implement application whitelisting to prevent unauthorized PDF viewers

🔍 How to Verify

Check if Vulnerable:

Check Help > About in PDF-XChange Editor for version number

Check Version:

Not applicable - check via GUI Help > About

Verify Fix Applied:

Confirm version is 10.1.1.380 or higher in Help > About

📡 Detection & Monitoring

Log Indicators:

  • Application crashes when processing JB2 files
  • Unusual memory access patterns

Network Indicators:

  • Downloads of PDF files with JB2 images from untrusted sources

SIEM Query:

EventID=1000 OR EventID=1001 Source="PDF-XChange Editor" AND Keywords="Faulting module name"

📊 Metadata

CVE ID: CVE-2023-42067
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
CWE: CWE-125
Published: May 3, 2024
Last Updated: May 16, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-42067, you might also want to check these:

CVE-2021-41556 10.0

CVE-2021-41556 is a critical out-of-bounds read vulnerability in Squirrel scripting language that al...

Same vulnerability type (CWE-125)
CVE-2024-22004 10.0

This vulnerability allows attackers with privileged access on Linux non-secure operating systems to ...

Same vulnerability type (CWE-125)
CVE-2021-21777 10.0

CVE-2021-21777 is a critical out-of-bounds read vulnerability in the Ethernet/IP UDP handler of OpEN...

Same vulnerability type (CWE-125)