CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5374 matches found

Zero Day Initiative•added 2025/12/19 12:0 a.m.•3 views

Foxit PDF Reader AcroForm User-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS7.2AI score0.00255EPSS

Exploits0References1

Tenable Nessus•added 2025/12/19 12:0 a.m.•5 views

Foxit PDF Reader for Mac < 2025.3 Multiple Vulnerabilities

According to its version, the Foxit PDF Reader for Mac application previously named Foxit Reader for Mac installed on the remote macOS host is prior to 2025.3. It is, therefore affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the...

7.8CVSS6.8AI score0.00255EPSS

Exploits0References6

CNNVD•added 2025/12/19 12:0 a.m.•3 views

Foxit PDF Reader 安全漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A security vulnerability exists in Foxit PDF Reader versions prior to 2025.2.1, prior to 14.0.1, and prior to 13.2.1, which stems from a post-release reuse vulnerability in the parsing of PDF files that could lead to the execution o...

7.8CVSS6.6AI score0.00255EPSS

Exploits0References2

OSV•added 2025/12/11 4:16 p.m.•3 views

CVE-2025-59803

Foxit PDF Editor and Reader before 2025.2.1 allow signature spoofing via triggers. An attacker can embed triggers e.g., JavaScript in a PDF document that execute during the signing process. When a signer reviews the document, the content appears normal. However, once the signature is applied, the...

5.3CVSS5.9AI score0.00138EPSS

Exploits0References1

NVD•added 2025/12/11 4:16 p.m.•4 views

CVE-2025-59802

Foxit PDF Editor and Reader before 2025.2.1 allow signature spoofing via OCG. When Optional Content Groups OCG are supported, the state property of an OCG is runtime-only and not included in the digital signature computation buffer. An attacker can leverage JavaScript or PDF triggers to dynamical...

7.5CVSS0.00271EPSS

Exploits0References1

CNNVD•added 2025/12/11 12:0 a.m.•4 views

Foxit PDF Reader和Foxit PDF Editor 安全漏洞

Foxit PDF Reader and Foxit PDF Editor are both products of Foxit Corporation of China.Foxit PDF Reader is a PDF reader.Foxit PDF Editor is a PDF editor. A security vulnerability exists in Foxit PDF Reader and Foxit PDF Editor versions prior to 2025.2.1, which stems from an OCG state attribute not...

7.5CVSS6.3AI score0.00271EPSS

Exploits0References1