Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310834074HistoryJun 19, 2024 - 12:00 a.m.
Foxit Reader Privilege Escalation Vulnerability (June 2024)
2024-06-1900:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
1
foxit reader
privilege escalation
vulnerability
certification validation
updater executable
elevation
windows
update
vendorfix
security bulletin
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
8.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Foxit Reader is prone to a privilege
escalation vulnerability.
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:foxitsoftware:reader";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.834074");
script_version("2024-06-21T15:40:03+0000");
script_cve_id("CVE-2024-29072");
script_tag(name:"cvss_base", value:"6.8");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:S/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2024-06-21 15:40:03 +0000 (Fri, 21 Jun 2024)");
script_tag(name:"creation_date", value:"2024-06-19 11:04:13 +0530 (Wed, 19 Jun 2024)");
script_name("Foxit Reader Privilege Escalation Vulnerability (June 2024)");
script_tag(name:"summary", value:"Foxit Reader is prone to a privilege
escalation vulnerability.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
on the target host.");
script_tag(name:"insight", value:"The flaw exists due to an improper
certification validation of the updater executable before executing it.");
script_tag(name:"impact", value:"Successful exploitation allows an attacker
to elevate privileges.");
script_tag(name:"affected", value:"Foxit Reader version 2024.2.1.25153 and
prior on Windows.");
script_tag(name:"solution", value:"Update to version 2024.2.2 or later.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"registry");
script_xref(name:"URL", value:"https://www.foxitsoftware.com/support/security-bulletins.php");
script_copyright("Copyright (C) 2024 Greenbone AG");
script_category(ACT_GATHER_INFO);
script_family("General");
script_dependencies("gb_foxit_reader_detect_portable_win.nasl");
script_mandatory_keys("foxit/reader/ver");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);
vers = infos["version"];
path = infos["location"];
if(version_is_less(version:vers, test_version:"2024.2.2")) {
report = report_fixed_ver(installed_version:vers, fixed_version:" 2024.2.2", install_path:path);
security_message(port:0, data:report);
exit(0);
}
exit(99);
Related
nvd
nvd
CVE-2024-29072
2024-05-28 14:15:12
vulnrichment
vulnrichment
CVE-2024-29072
2024-05-28 13:52:58
nessus
nessus
Foxit PDF Editor < 11.2.10 Vulnerability
2024-05-26 00:00:00
Foxit PDF Editor < 12.1.7 Vulnerability
2024-05-26 00:00:00
Foxit PDF Editor < 2024.2.2 Vulnerability
2024-05-24 00:00:00
cvelist
cvelist
CVE-2024-29072
2024-05-28 13:52:58
kaspersky
kaspersky
KLA68205 PE vulnerability in Foxit Reader
2024-05-24 00:00:00
openvas
openvas
Foxit PhantomPDF Privilege Escalation Vulnerability (June 2024)
2024-06-19 00:00:00
cve
cve
CVE-2024-29072
2024-05-28 14:15:12
talos
talos
talosblog
talosblog
8.2 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
8.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Related for OPENVAS:1361412562310834074