CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
79.1%
Use after free vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service.
Security updates available in Foxit PDF Reader 12.0.2 and Foxit PDF Editor 12.0.2
Public exploits exist for this vulnerability.
CVE-2022-38097 critical
CVE-2022-32774 critical
CVE-2022-40129 critical
CVE-2022-37332 critical
Update to the latest version
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.