CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2022/07/18 6:42 p.m.•27 views

CVE-2022-28682

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.9AI score0.01094EPSS

CVE•added 2022/07/18 6:42 p.m.•93 views

CVE-2022-28682

CVE-2022-28682 affects Foxit PDF Reader 11.2.1.53537. The issue lies in Doc object handling where JavaScript actions can trigger a read past the end of an allocated object, enabling remote code execution in the context of the current process after user interaction (visiting a malicious page or op...

7.8CVSS7.7AI score0.01094EPSS

CVE•added 2022/07/18 6:42 p.m.•102 views

CVE-2022-28681

CVE-2022-28681 affects Foxit PDF Reader 11.2.1.53537. The flaw is in the deletePages method: JavaScript actions can read past the end of an allocated object, and, with other vulnerabilities, may enable code execution in the process context. Exploitation requires user interaction (visiting a malic...

6.1CVSS6.4AI score0.0081EPSS

Cvelist•added 2022/07/18 6:42 p.m.•21 views

CVE-2022-28681

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

2.5CVSS6.6AI score0.0081EPSS

Cvelist•added 2022/07/18 6:42 p.m.•30 views

CVE-2022-28680

CVE•added 2022/07/18 6:42 p.m.•79 views

CVE-2022-28680

CVE-2022-28680 affects Foxit PDF Reader 11.2.1.53537 where the bug lies in handling of Annotation objects, failing to validate object existence before operations. This allows remote code execution in the context of the current process and requires user interaction (visiting a malicious page or op...

Exploits0References2Affected Software1

Cvelist•added 2022/07/18 6:41 p.m.•31 views

CVE-2022-28679

CVE•added 2022/07/18 6:41 p.m.•90 views

CVE-2022-28679

CVE-2022-28679 affects Foxit PDF Reader 11.2.1.53537. The vulnerability is in the handling of Annotation objects and stems from not validating the existence of an object before performing operations, enabling remote code execution in the current process when a user opens a malicious file or visit...

Cvelist•added 2022/07/18 6:41 p.m.•25 views

CVE-2022-28678

CVE•added 2022/07/18 6:41 p.m.•71 views

CVE-2022-28678

CVE-2022-28678 affects Foxit PDF Reader 11.2.1.53537. The flaw is in the handling of Doc objects, where the code does not validate the existence of an object before performing operations, enabling arbitrary code execution in the context of the current process. Exploitation requires user interacti...

CVE•added 2022/07/18 6:41 p.m.•77 views

CVE-2022-28677

CVE-2022-28677 affects Foxit PDF Reader 11.2.1.53537. The flaw lies in how Annotation objects are handled: the code fails to validate the existence of an object before operating on it, enabling remote code execution when a user opens a malicious page or file and interacts with it. The vulnerabili...

Cvelist•added 2022/07/18 6:41 p.m.•20 views

CVE-2022-28676

CVE•added 2022/07/18 6:41 p.m.•78 views

CVE-2022-28676

Foxit PDF Reader 11.2.1.53537 is affected by a Doc object handling flaw that allows code execution when a user opens a malicious file or visits a malicious page. The vulnerability (CVE-2022-28676) requires user interaction and can execute code in the current process context; exploit referenced as...

Cvelist•added 2022/07/18 6:41 p.m.•19 views

CVE-2022-28675

CVE•added 2022/07/18 6:41 p.m.•63 views

CVE-2022-28675

Foxit PDF Reader 11.2.1.53537 is affected by CVE-2022-28675, a vulnerability in handling Annotation objects that allows remote code execution after user visits a malicious page/file. The flaw stems from not validating object existence before operations, enabling code execution in the current proc...

Cvelist•added 2022/07/18 6:41 p.m.•34 views

CVE-2022-28674

CVE•added 2022/07/18 6:41 p.m.•84 views

CVE-2022-28674

CVE-2022-28674 affects Foxit PDF Reader 11.2.1.53537, where a flaw in the handling of Annotation objects can lead to remote code execution if a user opens a malicious file or visits a malicious page. The underlying issue is the lack of validating an object's existence before performing operations...

Cvelist•added 2022/07/18 6:41 p.m.•23 views

CVE-2022-28673

CVE•added 2022/07/18 6:41 p.m.•91 views

CVE-2022-28673

Foxit PDF Reader 11.2.1.53537 is affected by CVE-2022-28673 due to a Doc object handling flaw and missing validation when operating on Doc objects, enabling remote code execution with user interaction (visiting a malicious page or opening a malicious file). Exploitation can run code in the curren...