Lucene search
K

186 matches found

Prion
Prion
added 2022/11/21 4:15 p.m.16 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. By prematurely destroying annotation objects, a specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An...

4.4CVSS7.8AI score0.00801EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/11/21 4:5 p.m.33 views

CVE-2022-40129

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. A specially-crafted PDF document can trigger the reuse of previously freed memory via misusing Optional Content Group API, which can lead to arbitrary code execution. An attacker...

8.8CVSS7.9AI score0.0098EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/11/21 4:5 p.m.31 views

CVE-2022-38097

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. By prematurely destroying annotation objects, a specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An...

8.8CVSS7.9AI score0.00801EPSS
Exploits0References1
CVE
CVE
added 2022/11/21 4:5 p.m.95 views

CVE-2022-37332

Foxit CVE-2022-37332 affects Foxit PDF Reader 12.0.1.12430. It is a use-after-free in the JavaScript engine that can be triggered by a specially crafted PDF document, by misusing the media player API, to achieve arbitrary code execution. Exploitation requires user action: opening a malicious file...

8.8CVSS7.6AI score0.0135EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/11/21 4:5 p.m.35 views

CVE-2022-37332

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. A specially-crafted PDF document can trigger the reuse of previously freed memory via misusing media player API, which can lead to arbitrary code execution. An attacker needs to...

8.8CVSS7.9AI score0.0135EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/11/21 4:5 p.m.7 views

CVE-2022-37332

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. A specially-crafted PDF document can trigger the reuse of previously freed memory via misusing media player API, which can lead to arbitrary code execution. An attacker needs to...

8.8CVSS7.7AI score0.0135EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/11/21 4:5 p.m.31 views

CVE-2022-32774

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. By prematurely deleting objects associated with pages, a specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution...

8.8CVSS8.1AI score0.0098EPSS
Exploits1References1
CVE
CVE
added 2022/11/21 4:5 p.m.97 views

CVE-2022-32774

CVE-2022-32774 is a use-after-free vulnerability in Foxit Software’s PDF Reader (version 12.0.1.12430) JavaScript engine. By prematurely deleting objects related to pages, a crafted PDF can trigger reuse of freed memory, leading to arbitrary code execution. Exploitation requires user interaction ...

8.8CVSS7.8AI score0.0098EPSS
Exploits1References1Affected Software1
Talos
Talos
added 2022/11/10 12:0 a.m.38 views

Foxit Reader deletePages Field Calculate use-after-free vulnerability

Talos Vulnerability Report TALOS-2022-1600 Foxit Reader deletePages Field Calculate use-after-free vulnerability November 10, 2022 CVE Number CVE-2022-32774 SUMMARY A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 12.0.1.12430. By prematurely...

8.8CVSS8.1AI score0.0098EPSS
Exploits1
NVD
NVD
added 2022/11/09 9:15 p.m.31 views

CVE-2022-43310

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path...

7.8CVSS0.01553EPSS
Exploits0References3
Prion
Prion
added 2022/11/09 9:15 p.m.23 views

Path traversal

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path...

4.4CVSS7.7AI score0.01553EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/09 12:0 a.m.6 views

CVE-2022-43310

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path...

8AI score0.01553EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/11/09 12:0 a.m.20 views

CVE-2022-43310

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path...

8AI score0.01553EPSS
Exploits0References3
NVD
NVD
added 2022/02/04 11:15 p.m.18 views

CVE-2022-22150

A memory corruption vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.1.0.52543. A specially-crafted PDF document can trigger an exception which is improperly handled, leaving the engine in an invalid state, which can lead to memory corruption and arbitrary...

8.8CVSS0.01795EPSS
Exploits1References1
Prion
Prion
added 2022/02/04 11:15 p.m.17 views

Memory corruption

A memory corruption vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.1.0.52543. A specially-crafted PDF document can trigger an exception which is improperly handled, leaving the engine in an invalid state, which can lead to memory corruption and arbitrary...

6.8CVSS8.9AI score0.01795EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/04 10:29 p.m.21 views

CVE-2021-40420

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.1.0.52543. A specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the user to open the...

8.8CVSS9.6AI score0.04687EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/02/04 10:29 p.m.25 views

CVE-2022-22150

A memory corruption vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.1.0.52543. A specially-crafted PDF document can trigger an exception which is improperly handled, leaving the engine in an invalid state, which can lead to memory corruption and arbitrary...

8.8CVSS9.7AI score0.01795EPSS
Exploits1References1
CVE
CVE
added 2022/02/04 10:29 p.m.91 views

CVE-2021-40420

Technical details for CVE-2021-40420 are not publicly available in the provided documents; monitor for updates.

8.8CVSS8.7AI score0.04687EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/08/05 9:15 p.m.18 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the user to open the...

6.8CVSS8.8AI score0.04546EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/08/05 9:15 p.m.18 views

Design/Logic Flaw

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.0.0.49893. A specially crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the user to open the...

6.8CVSS8.8AI score0.019EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder