CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2022/02/18 8:15 p.m.•2 views

CVE-2022-24366

8.8CVSS7.5AI score0.0066EPSS

Exploits0References3Affected Software1

Prion•added 2022/02/18 8:15 p.m.•21 views

Design/Logic Flaw

6.8CVSS8.8AI score0.0066EPSS

Prion•added 2022/02/18 8:15 p.m.•15 views

Design/Logic Flaw

6.8CVSS8.8AI score0.0066EPSS

Prion•added 2022/02/18 8:15 p.m.•22 views

Design/Logic Flaw

6.8CVSS8.8AI score0.0066EPSS

CVE•added 2022/02/18 7:52 p.m.•88 views

CVE-2022-24367

Foxit PDF Reader 11.1.0.52543 is affected by a vulnerability in AcroForms where the software fails to validate the existence of an object before performing operations, enabling remote code execution in the context of the current process when a user opens a malicious page or file. Exploitation req...

8.8CVSS9.2AI score0.0066EPSS

Cvelist•added 2022/02/18 7:52 p.m.•18 views

CVE-2022-24367

CVE•added 2022/02/18 7:52 p.m.•108 views

CVE-2022-24366

CVE-2022-24366 affects Foxit PDF Reader 11.1.0.52543. The issue is a failure to validate the existence of an object before performing operations on it within AcroForms, allowing remote code execution in the current process. Exploitation requires user interaction (visiting a malicious page or open...

8.8CVSS9.2AI score0.0066EPSS

Cvelist•added 2022/02/18 7:52 p.m.•21 views

CVE-2022-24366

CVE•added 2022/02/18 7:52 p.m.•133 views

CVE-2022-24365

Foxit PDF Reader 11.1.0.52543 is affected by CVE-2022-24365 due to improper handling of AcroForms. The vulnerability arises from not validating the existence of an object before performing operations on it, enabling remote code execution in the context of the current process. Exploitation require...

8.8CVSS9.2AI score0.0066EPSS

Cvelist•added 2022/02/18 7:52 p.m.•17 views

CVE-2022-24365

Cvelist•added 2022/02/18 7:52 p.m.•26 views

CVE-2022-24362

Zero Day Initiative•added 2022/02/10 12:0 a.m.•17 views

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2.3AI score0.0066EPSS

BDU FSTEC•added 2022/02/07 12:0 a.m.•1 views

The vulnerability of PDF files created by AcroForms, a text viewing program called Foxit Reader, and the PDF editing program Foxit PhantomPDF, allowing attackers to disclose protected information.

The vulnerability of PDF files created by AcroForms, as well as the Foxit Reader and Foxit PhantomPDF programs used for PDF editing, is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

5CVSS6AI score0.00586EPSS

Exploits0References6Affected Software2

CNVD•added 2021/10/19 12:0 a.m.•21 views

Foxit PDF Reader Information Disclosure Vulnerability (CNVD-2021-100580)

Foxit PDF Reader, a PDF reader from Foxit China, is vulnerable because the product does not verify the existence of an AcroForms object before operating on it. An attacker could use this and other vulnerabilities to execute arbitrary code in the context of the current process...

5.5CVSS3.2AI score0.00586EPSS

CNNVD•added 2021/10/15 12:0 a.m.•2 views

Foxit PDF Reader 缓冲区错误漏洞

5.5CVSS6AI score0.00586EPSS

Exploits0References4

NVD•added 2021/09/29 4:15 p.m.•14 views

CVE-2021-39840

Acrobat Reader DC versions 2021.005.20060 and earlier, 2020.004.30006 and earlier and 2017.011.30199 and earlier are affected by a use-after-free vulnerability when processing AcroForms that could result in arbitrary code execution in the context of the current user. User interaction is required ...

7.8CVSS0.45461EPSS

OSV•added 2021/09/29 4:15 p.m.•1 views

CVE-2021-39840

7.8CVSS7.5AI score0.45461EPSS