Lucene search
K

186 matches found

Cvelist
Cvelist
added 2020/12/22 5:58 p.m.35 views

CVE-2020-13570

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger the reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicio...

7.5CVSS8.9AI score0.02239EPSS
Exploits1References1
CVE
CVE
added 2020/12/22 5:58 p.m.66 views

CVE-2020-13570

CVE-2020-13570 is a use-after-free vulnerability in Foxit Reader/PhantomPDF (Foxit PDF Reader) JavaScript engine, affecting version 10.1.0.37527. A crafted PDF can trigger reuse of freed memory, enabling arbitrary code execution. User interaction is required to exploit; browser plugin usage can a...

8.8CVSS8.8AI score0.02239EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/12/22 5:57 p.m.28 views

CVE-2020-13557

A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the...

8.8CVSS8.9AI score0.71145EPSS
Exploits1References1
CVE
CVE
added 2020/12/22 5:57 p.m.89 views

CVE-2020-13557

CVE-2020-13557 is a use-after-free in Foxit PDF Reader’s JavaScript engine (Foxit Reader 10.1.0.37527). A crafted PDF can trigger reuse of freed memory, enabling arbitrary code execution. User interaction is required (opening the malicious file); if the browser plugin is enabled, visiting a malic...

8.8CVSS8.8AI score0.71145EPSS
Exploits1References1Affected Software1
Exploit DB
Exploit DB
added 2020/11/27 12:0 a.m.1120 views

Foxit Reader 9.0.1.1049 - Arbitrary Code Execution

Exploit Title: Foxit Reader 9.0.1.1049 - Arbitrary Code Execution Date: 2020-08-29 Exploit Author: CrossWire Vendor Homepage: https://www.foxitsoftware.com/ Software Link:...

8.8CVSS8.7AI score0.63313EPSS
Exploits13
NVD
NVD
added 2020/01/16 10:15 p.m.28 views

CVE-2019-5130

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick th...

8.8CVSS8.4AI score0.02312EPSS
Exploits1References1
NVD
NVD
added 2020/01/16 10:15 p.m.31 views

CVE-2019-5131

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick t...

8.8CVSS8.8AI score0.02422EPSS
Exploits1References1
Prion
Prion
added 2020/01/16 10:15 p.m.15 views

Design/Logic Flaw

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick th...

6.8CVSS8.8AI score0.02312EPSS
Exploits1References1Affected Software2
AlpineLinux
AlpineLinux
added 2020/01/16 10:0 p.m.13 views

CVE-2019-5130

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick th...

8.8CVSS7.3AI score0.02312EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2020/01/16 9:55 p.m.13 views

CVE-2019-5131

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick t...

8.8CVSS7.3AI score0.02422EPSS
Exploits1References1
Talos
Talos
added 2020/01/16 12:0 a.m.48 views

Foxit PDF Reader Javascript createTemplate Invalid Page Code Execution Vulnerability

Summary An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to...

8.8CVSS8.6AI score0.02312EPSS
Exploits1
OpenVAS
OpenVAS
added 2019/10/12 12:0 a.m.20 views

Foxit Studio Photo Detection (Windows SMB Login)

Detects the installed version of Foxit Studio Photo for Windows. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4AI score
Exploits0References1
NVD
NVD
added 2019/10/02 4:15 p.m.31 views

CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs ...

8.8CVSS8.9AI score0.0604EPSS
Exploits1References1
Prion
Prion
added 2019/10/02 4:15 p.m.14 views

Memory corruption

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs ...

6.8CVSS8.9AI score0.0604EPSS
Exploits1References1Affected Software2
Cvelist
Cvelist
added 2019/10/02 3:55 p.m.33 views

CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs ...

8.8CVSS8.9AI score0.0604EPSS
Exploits1References1
Talos
Talos
added 2019/09/30 12:0 a.m.69 views

Foxit PDF Reader JavaScript Array.includes remote code execution vulnerability

Summary An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn’t handled properly, resulting in arbitrary code execution. An attacke...

8.8CVSS8.8AI score0.0604EPSS
Exploits1
The Hacker News
The Hacker News
added 2019/08/30 6:2 p.m.228 views

Foxit PDF Software Company Suffers Data Breach—Asks Users to Reset Password

If you have an online account with Foxit Software, you need to reset your account password immediately—as an unknown attacker has compromised your personal data and log-in credentials. Foxit Software, a company known for its popular lightweight Foxit PDF Reader and PhantomPDF applications being...

0.9AI score
Exploits0
Source Incite
Source Incite
added 2019/07/31 12:0 a.m.29 views

SRC-2020-00 : Foxit Reader XObject Stream Uninitialized Object Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exis...

8.1CVSS7.9AI score0.00932EPSS
Exploits2
CNVD
CNVD
added 2019/06/28 12:0 a.m.3 views

Foxit PDF SDK ActiveX Buffer Overflow Vulnerability (CNVD-2019-21947)

Foxit PDF SDK ActiveX is China's Foxit Foxit company's a PDF software development kit, but also a visual programming components. The product provides PDF display and annotation features. A security vulnerability exists in Foxit PDF SDK ActiveX 5.5.0 and earlier versions. A remote attacker can...

7.8CVSS7.1AI score0.02241EPSS
Exploits1References1
Prion
Prion
added 2019/01/30 10:29 p.m.18 views

Out-of-bounds

An exploitable out-of-bounds read vulnerability exists in the handling of certain XFA element attributes of Foxit Software's PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger an out-of-bounds read, which can disclose sensitive memory content and aid in exploitation when...

5.8CVSS6.6AI score0.49566EPSS
Exploits1References1Affected Software2
Rows per page
Query Builder