CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

610 matches found

Talos•added 2020/12/09 12:0 a.m.•115 views

Foxit Reader JavaScript media openPlayer type confusion vulnerability

Summary A type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger an improper use of an object, resulting in memory corruption and arbitrary code execution. An attacker needs to trick the...

8.8CVSS9AI score0.01021EPSS

Exploits1

Talos•added 2020/12/09 12:0 a.m.•89 views

Foxit Reader JavaScript choice field use-after-free vulnerability

Summary A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open t...

8.8CVSS9.2AI score0.14029EPSS

Exploits1

Talos•added 2020/12/09 12:0 a.m.•44 views

Foxit Reader Javascript Field fileSelect Use After Free Vulnerability

8.8CVSS8.7AI score0.25714EPSS

Exploits1

Tenable Nessus•added 2020/06/09 12:0 a.m.•271 views

Adobe Flash Player <= 32.0.0.371 (APSB20-30)

The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 32.0.0.371. It is, therefore, affected by an use after free vulnerability. An unauthenticated, remote attacker can exploit this, via a specially crafted file, to execute arbitrary code within the...

10CVSS9.2AI score0.08341EPSS

Exploits0References3

Tenable Nessus•added 2020/06/09 12:0 a.m.•111 views

KB4561600: Security update for Adobe Flash Player (June 2020)

The remote Windows host is missing security update KB4561600. It is, therefore, affected by an use after free vulnerability. An unauthenticated, remote attacker can exploit this, via a specially crafted file, to execute arbitrary code within the context of the user. C Tenable Network Security, In...

10CVSS8.8AI score0.08341EPSS

Exploits0References3

NVD•added 2020/01/16 10:15 p.m.•12 views

CVE-2019-5131

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick t...

8.8CVSS8.8AI score0.08485EPSS

Exploits1References1

NVD•added 2020/01/16 10:15 p.m.•14 views

CVE-2019-5145

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit PDF Reader, version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open t...

8.8CVSS8.8AI score0.08485EPSS

Exploits1References1

NVD•added 2020/01/16 10:15 p.m.•10 views

CVE-2019-5126

8.8CVSS8.8AI score0.04604EPSS

Exploits1References1

OSV•added 2020/01/16 10:15 p.m.•1 views

CVE-2019-5131

8.8CVSS7.4AI score0.08485EPSS

Exploits1References1

Prion•added 2020/01/16 10:15 p.m.•18 views

Design/Logic Flaw

6.8CVSS8.8AI score0.04604EPSS

Exploits1References1Affected Software2

Prion•added 2020/01/16 10:15 p.m.•12 views

Design/Logic Flaw

6.8CVSS8.8AI score0.08485EPSS

Exploits1References1Affected Software2

Prion•added 2020/01/16 10:15 p.m.•11 views

Design/Logic Flaw

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick th...

6.8CVSS8.8AI score0.03867EPSS

Exploits1References1Affected Software2