Lucene search
K

3056 matches found

Cvelist
Cvelist
added 2025/12/19 7:11 a.m.28 views

CVE-2025-66499 Foxit PDF Reader PDF Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability

A heap-based buffer overflow vulnerability exists in the PDF parsing of Foxit PDF Reader when processing specially crafted JBIG2 data. An integer overflow in the calculation of the image buffer size may occur, potentially allowing a remote attacker to execute arbitrary code...

7.8CVSS0.00252EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/19 7:10 a.m.28 views

CVE-2025-66497 Foxit PDF Reader 3D Annotation Out-of-Bounds Memory Access Vulnerability

A memory corruption vulnerability exists in the 3D annotation handling of Foxit PDF Reader due to insufficient bounds checking when parsing PRC data. When opening a PDF file containing malformed or specially crafted PRC content, out-of-bounds memory access may occur, resulting in memory corruptio...

5.3CVSS0.00175EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/19 7:10 a.m.3 views

CVE-2025-66497 Foxit PDF Reader 3D Annotation Out-of-Bounds Memory Access Vulnerability

A memory corruption vulnerability exists in the 3D annotation handling of Foxit PDF Reader due to insufficient bounds checking when parsing PRC data. When opening a PDF file containing malformed or specially crafted PRC content, out-of-bounds memory access may occur, resulting in memory corruptio...

5.3CVSS6.6AI score0.00175EPSS
Exploits0References1
CVE
CVE
added 2025/12/19 7:10 a.m.15 views

CVE-2025-66497

CVE-2025-66497 is a Foxit 3D annotation memory corruption vulnerability. Connected sources confirm the issue stems from insufficient bounds checking when parsing PRC data in Foxit PDF Reader/Editor’s 3D annotations, leading to out-of-bounds memory access and potential memory corruption. Affected ...

7.8CVSS6.6AI score0.00175EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2025/12/19 7:10 a.m.27 views

CVE-2025-66496 Foxit PDF Reader 3D Annotation Out-of-Bounds Memory Access Vulnerability

A memory corruption vulnerability exists in the 3D annotation handling of Foxit PDF Reader due to insufficient bounds checking when parsing PRC data. When opening a PDF file containing malformed or specially crafted PRC content, out-of-bounds memory access may occur, resulting in memory corruptio...

5.3CVSS0.00175EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 7:9 a.m.4 views

EUVD-2025-204465

A use-after-free vulnerability exists in the annotation handling of Foxit PDF Reader before 2025.2.1, 14.0.1, and 13.2.1 on Windows and MacOS. When opening a PDF containing specially crafted JavaScript, a pointer to memory that has already been freed may be accessed or dereferenced, potentially...

7.8CVSS7.1AI score0.00255EPSS
Exploits0References2
CVE
CVE
added 2025/12/19 7:9 a.m.12 views

CVE-2025-66495

CVE-2025-66495 is a confirmed use-after-free vulnerability in Foxit PDF Reader/Editor related to annotation handling. Affected products include Foxit PDF Reader before 2025.2.1, 14.0.1, and 13.2.1 on Windows and macOS. The issue arises when opening a PDF containing specially crafted JavaScript, w...

7.8CVSS7.2AI score0.00255EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2025/12/19 7:9 a.m.3 views

CVE-2025-66495 Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

A use-after-free vulnerability exists in the annotation handling of Foxit PDF Reader before 2025.2.1, 14.0.1, and 13.2.1 on Windows and MacOS. When opening a PDF containing specially crafted JavaScript, a pointer to memory that has already been freed may be accessed or dereferenced, potentially...

7.8CVSS7.2AI score0.00255EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/19 7:8 a.m.26 views

CVE-2025-66494 Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution Vulnerability

A use-after-free vulnerability exists in the PDF file parsing of Foxit PDF Reader before 2025.2.1, 14.0.1, and 13.2.1 on Windows. A PDF object managed by multiple parent objects could be freed while still being referenced, potentially allowing a remote attacker to execute arbitrary code...

7.8CVSS0.00255EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/19 7:8 a.m.3 views

CVE-2025-66494 Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution Vulnerability

A use-after-free vulnerability exists in the PDF file parsing of Foxit PDF Reader before 2025.2.1, 14.0.1, and 13.2.1 on Windows. A PDF object managed by multiple parent objects could be freed while still being referenced, potentially allowing a remote attacker to execute arbitrary code...

7.8CVSS7.3AI score0.00255EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/19 7:7 a.m.3 views

CVE-2025-66493 Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

A use-after-free vulnerability exists in the AcroForm handling of Foxit PDF Reader and Foxit PDF Editor before 2025.2.1,14.0.1 and 13.2.1 on Windows . When opening a PDF containing specially crafted JavaScript, a pointer to memory that has already been freed may be accessed or dereferenced,...

7.8CVSS7.2AI score0.00255EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 7:7 a.m.4 views

EUVD-2025-204467

A use-after-free vulnerability exists in the AcroForm handling of Foxit PDF Reader and Foxit PDF Editor before 2025.2.1,14.0.1 and 13.2.1 on Windows . When opening a PDF containing specially crafted JavaScript, a pointer to memory that has already been freed may be accessed or dereferenced,...

7.8CVSS7.1AI score0.00255EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/19 7:7 a.m.24 views

CVE-2025-66493 Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

A use-after-free vulnerability exists in the AcroForm handling of Foxit PDF Reader and Foxit PDF Editor before 2025.2.1,14.0.1 and 13.2.1 on Windows . When opening a PDF containing specially crafted JavaScript, a pointer to memory that has already been freed may be accessed or dereferenced,...

7.8CVSS0.00255EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/19 12:0 a.m.4 views

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS7.2AI score0.00255EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/19 12:0 a.m.6 views

Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

3.3CVSS5.3AI score0.00175EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/19 12:0 a.m.4 views

Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PD...

7.8CVSS7.2AI score0.00255EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/19 12:0 a.m.10 views

Foxit PDF Reader U3D File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

3.3CVSS5.5AI score0.00175EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/19 12:0 a.m.7 views

Foxit PDF Reader 安全漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit Foxit. A security vulnerability exists in Foxit PDF Reader that originates from a heap buffer overflow when processing specially crafted JBIG2 data, which could lead to the execution of arbitrary code...

7.8CVSS7AI score0.00252EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.5 views

PT-2025-52423

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader versions prior to 2025.2.1 Foxit PDF Reader versions prior to 14.0.1 Foxit PDF Reader version 13.2.1 Description A use-after-free issue exists in the way Foxit PDF Reader handles annotations. Opening a PDF file with specific...

7.8CVSS6.6AI score0.00255EPSS
Exploits0References8
Zero Day Initiative
Zero Day Initiative
added 2025/12/19 12:0 a.m.3 views

Foxit PDF Reader PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PD...

7.8CVSS7.2AI score0.00252EPSS
Exploits0References1
Rows per page
Query Builder