CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

8.8CVSS8AI score0.00709EPSS

Foxit PDF Reader JavaScript Engine Remote Code Execution Vulnerability (CNVD-2018-20719)

Foxit PDF Reader is China's Foxit Foxit Software Corporation of a PDF document reader. JavaScript engine is one of the JavaScript scripting engine. A remote code execution vulnerability exists in the JavaScript engine in Foxit PDF Reader. A remote attacker can exploit this vulnerability to execut...

Exploits0References1

CNVD•added 2018/10/10 12:0 a.m.•2 views

Foxit Reader and Foxit PhantomPDF JavaScript Engine Memory Misreference Vulnerability (CNVD-2018-20718)

Foxit Reader is China Foxit Foxit software company a PDF document reader.Foxit PhantomPDF is a commercial version.JavaScript engine is one of the JavaScript scripting engine. A memory misreference vulnerability exists in the JavaScript engine in Foxit Reader 9.2.0.9297 and earlier versions and...

7.8CVSS7.7AI score0.00546EPSS

Exploits0References1

8CVSS7.9AI score0.50108EPSS

Foxit PDF Reader JavaScript Engine Remote Code Execution Vulnerability (CNVD-2018-20711)

Foxit PDF Reader is China's Foxit Foxit Software Corporation of a PDF document reader. JavaScript engine is one of the JavaScript scripting engine. A remote code execution vulnerability exists in the this.dataObjects object of the JavaScript engine in Foxit PDF Reader. A remote attacker can explo...

CNVD•added 2018/10/10 12:0 a.m.•2 views

Foxit PDF Reader JavaScript Engine Remote Code Execution Vulnerability (CNVD-2018-20712)

Foxit PDF Reader is China's Foxit Foxit Software Corporation of a PDF document reader. JavaScript engine is one of the JavaScript scripting engine. A remote code execution vulnerability exists in the this.bookmarkRoot.children object of the JavaScript engine in Foxit PDF Reader. A remote attacker...

8CVSS7.9AI score0.50108EPSS

8.8CVSS8AI score0.07272EPSS

Foxit PDF Reader JavaScript Engine Remote Code Execution Vulnerability (CNVD-2018-20709)

CNVD•added 2018/10/10 12:0 a.m.•2 views

Foxit Reader and Foxit PhantomPDF JavaScript Engine Arbitrary Code Execution Vulnerability

Foxit Reader is China Foxit Foxit software company a PDF document reader.Foxit PhantomPDF is a commercial version.JavaScript engine is one of the JavaScript scripting engine. The JavaScript engine in Foxit Reader 9.2.0.9297 and earlier versions and Foxit PhantomPDF 9.2.0.9297 and earlier versions...

7.8CVSS7.9AI score0.00546EPSS

Exploits0References1

8.8CVSS8AI score0.00709EPSS

Foxit PDF Reader JavaScript Engine Remote Code Execution Vulnerability (CNVD-2018-20706)

8.8CVSS5.8AI score0.00709EPSS

CVE-2018-3996

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...

NVD•added 2018/10/08 4:29 p.m.•11 views

CVE-2018-3992

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick th...

8.8CVSS5.8AI score

Exploits0References3

CVE-2018-3997

8.8CVSS8.2AI score0.00703EPSS

NVD•added 2018/10/08 4:29 p.m.•10 views

CVE-2018-3997

8.8CVSS5.8AI score

Exploits0References3

CVE-2018-3942

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...

8.8CVSS8.2AI score0.00709EPSS

8.8CVSS6AI score0.00709EPSS

CVE-2018-3941

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the...

8.8CVSS6AI score0.00709EPSS

CVE-2018-3942

8.8CVSS5.8AI score0.07272EPSS

CVE-2018-3940

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused. An attacker needs to trick the user to open the malicious file to trigger...

NVD•added 2018/10/08 4:29 p.m.•16 views

CVE-2018-3940

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused. An attacker needs to trick the user to open the malicious file to trigger...

8.8CVSS7.9AI score0.07272EPSS

CVE-2018-16295

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-2018-16293, CVE-2018-16294, CVE-2018-16296, and CVE-2018-16297. A specially crafted PDF document can...

7.8CVSS5.8AI score

NVD•added 2018/10/08 4:29 p.m.•15 views

CVE-2018-16295

7.8CVSS7.7AI score0.00546EPSS

7.8CVSS5.8AI score0.00546EPSS

CVE-2018-16296

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-2018-16293, CVE-2018-16294, CVE-2018-16295, and CVE-2018-16297. A specially crafted PDF document can...

CVE-2018-16297

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Reader before 9.3 and PhantomPDF before 9.3, a different vulnerability than CVE-2018-16291, CVE-2018-16292, CVE-2018-16293, CVE-2018-16294, CVE-2018-16295, and CVE-2018-16296. A specially crafted PDF document can...

7.8CVSS5.8AI score