CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2024/04/02 8:17 p.m.•70 views

CVE-2024-30359

CVE-2024-30359 describes a remote code execution vulnerability in Foxit PDF Reader related to AcroForm 3D objects. The flaw arises from insufficient validation of user-supplied data when handling 3D AcroForm objects, allowing an out-of-bounds read that can lead to code execution in the context of...

7.8CVSS8.2AI score0.00748EPSS

Cvelist•added 2024/04/02 8:17 p.m.•20 views

CVE-2024-30358 Foxit PDF Reader AcroForm User-After-Free Remote Code Execution Vulnerability

Foxit PDF Reader AcroForm User-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS8.2AI score0.0081EPSS

Vulnrichment•added 2024/04/02 8:17 p.m.•21 views

CVE-2024-30358 Foxit PDF Reader AcroForm User-After-Free Remote Code Execution Vulnerability

7.8CVSS7.8AI score0.0081EPSS

CVE•added 2024/04/02 8:17 p.m.•75 views

CVE-2024-30358

CVE-2024-30358 is a Foxit PDF Reader AcroForm Use-After-Free remote code execution vulnerability. The flaw arises from not validating the existence of an object before performing operations on it during AcroForm handling, allowing an attacker to execute code in the process context after a user vi...

7.8CVSS8.2AI score0.0081EPSS

CVE•added 2024/04/02 8:16 p.m.•79 views

CVE-2024-30357

CVE-2024-30357 stems from Foxit PDF Reader/Editor AcroForm Annotation handling where missing validation enables type confusion in Annotations, allowing remote code execution in the target process. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). The ...

Vulnrichment•added 2024/04/02 8:16 p.m.•20 views

CVE-2024-30357 Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability

Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.8AI score0.00764EPSS

Cvelist•added 2024/04/02 8:16 p.m.•20 views

CVE-2024-30357 Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability

Vulnrichment•added 2024/04/02 8:15 p.m.•17 views

CVE-2024-30356 Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability

Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

3.3CVSS6AI score0.00474EPSS

CVE•added 2024/04/02 8:15 p.m.•73 views

CVE-2024-30355

Foxit PDF Reader exposes an AcroForm Out-Of-Bounds Write Remote Code Execution vulnerability (CVE-2024-30355) in the Doc objects handling. Root cause: insufficient validation of user-supplied data, leading to write past end of allocated buffer; attacker could execute code in the target process. E...

7.8CVSS8.3AI score0.00764EPSS

Vulnrichment•added 2024/04/02 8:15 p.m.•22 views

CVE-2024-30355 Foxit PDF Reader AcroForm Out-Of-Bounds Write Remote Code Execution Vulnerability

Foxit PDF Reader AcroForm Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicio...

7.8CVSS7.4AI score0.00764EPSS

Cvelist•added 2024/04/02 8:15 p.m.•27 views

CVE-2024-30355 Foxit PDF Reader AcroForm Out-Of-Bounds Write Remote Code Execution Vulnerability

Vulnrichment•added 2024/04/02 8:15 p.m.•16 views

CVE-2024-30354 Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

7.8CVSS7.8AI score0.00793EPSS

CVE•added 2024/04/02 8:15 p.m.•66 views

CVE-2024-30354

CVE-2024-30354 affects Foxit PDF Reader (AcroForm) with a Use-After-Free in AcroForms handling of Doc objects, caused by not validating object existence before operations. The vulnerability allows code execution in the process context and requires user interaction (target must visit a malicious p...

7.8CVSS8.2AI score0.00793EPSS

Cvelist•added 2024/04/02 8:15 p.m.•18 views

CVE-2024-30354 Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.00793EPSS

Vulnrichment•added 2024/04/02 8:15 p.m.•18 views

CVE-2024-30353 Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability

Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a maliciou...

7.8CVSS7.8AI score0.00764EPSS

CVE•added 2024/04/02 8:15 p.m.•69 views

CVE-2024-30353

CVE-2024-30353 is a Foxit PDF Reader AcroForm Use-After-Free/Out-of-Bounds Read vulnerability with the root cause in AcroForm Doc object handling. The issue allows an attacker to trigger a read past the end of a buffer, potentially enabling remote code execution in the context of the current proc...

Cvelist•added 2024/04/02 8:15 p.m.•22 views

CVE-2024-30353 Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability