3 matches found
CVE-2022-38097
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. By prematurely destroying annotation objects, a specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An...
CVE-2022-38097
The CVE-2022-38097 entry concerns Foxit Software’s PDF Reader (version 12.0.1.12430). The root cause is a use-after-free in the JavaScript engine triggered by prematurely destroying annotation objects, leading to potential arbitrary code execution when a user opens a malicious PDF or visits a cra...
KLA20039 Multiple vulnerabilities in Foxit PDF Reader
Use after free vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service. Original advisories Security updates available in Foxit PDF Reader 12.0.2 and Foxit PDF Editor 12.0.2 Exploitation Public exploits exist for this vulnerability...