Lucene search
+L

126 matches found

Cvelist
Cvelist
added 2021/05/07 8:16 p.m.27 views

CVE-2021-31455

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS8.6AI score0.02761EPSS
Exploits0References2
CVE
CVE
added 2021/05/07 8:16 p.m.63 views

CVE-2021-31453

Foxit Reader 10.1.1.37576 is affected by CVE-2021-31453 due to improper validation of an object in XFA Forms handling, enabling remote code execution. The flaw allows an attacker to run arbitrary code in the context of the current process after user interaction (e.g., opening a malicious file or ...

7.8CVSS8.4AI score0.02784EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2021/05/07 8:16 p.m.43 views

CVE-2021-31453

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS8.6AI score0.02784EPSS
Exploits0References2
CVE
CVE
added 2021/05/07 8:16 p.m.72 views

CVE-2021-31452

Foxit Reader 10.1.1.37576 and earlier is affected by a remote code execution vulnerability in the handling of XFA forms. The issue stems from insufficient validation of user-supplied data, leading to a write past the end of an allocated data structure and enabling code execution in the attacker’s...

7.8CVSS8.4AI score0.02933EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2021/05/07 8:16 p.m.46 views

CVE-2021-31452

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS8.6AI score0.02933EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/05/07 8:16 p.m.38 views

CVE-2021-31450

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS8.6AI score0.02784EPSS
Exploits0References2
CVE
CVE
added 2021/05/07 8:16 p.m.72 views

CVE-2021-31450

CVE-2021-31450 affects Foxit Reader 10.1.1.37576 (and related versions) where a fault in handling XFA forms permits remote code execution after tricking a user into opening a malicious page or file. The root cause is a failure to validate the existence of an object before performing operations on...

7.8CVSS8.4AI score0.02784EPSS
Exploits0References2Affected Software2
Zero Day Initiative
Zero Day Initiative
added 2021/05/07 12:0 a.m.37 views

Foxit Reader XFA Form Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS1.9AI score0.02933EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/05/07 12:0 a.m.10 views

Foxit Reader 缓冲区错误漏洞

Foxit Reader old name: Foxit PDF Reader is a set of software used to read PDF format files, by Fujian Foxit Software developed by Foxit Reader is a set of free to use the software, the operating system is mainly based on Microsoft Windows, and as long as there is a Win32 implementation of the...

7.8CVSS6.2AI score0.02933EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2021/05/07 12:0 a.m.33 views

Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS2.1AI score0.02761EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/05/07 12:0 a.m.40 views

Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS2.1AI score0.02784EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/05/07 12:0 a.m.35 views

Foxit Reader XFA relayout Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS2.3AI score0.02784EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/05/07 12:0 a.m.30 views

Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS2.1AI score0.02778EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/05/06 12:0 a.m.12 views

Foxit Reader for Windows 资源管理错误漏洞

Foxit Reader for Windows is a Windows-based PDF document reader from the Chinese company Foxit. Foxit Reader for Windows suffers from a resource management error vulnerability that originates from an error when handling certain XFA forms or annotation objects. A remote attacker could exploit the...

8.8CVSS7.9AI score0.01765EPSS
Exploits1References3
NVD
NVD
added 2020/04/22 9:15 p.m.16 views

CVE-2020-10907

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.04787EPSS
Exploits0References2
Prion
Prion
added 2020/04/22 9:15 p.m.20 views

Design/Logic Flaw

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS7.8AI score0.04787EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2020/04/22 8:51 p.m.26 views

CVE-2020-10907

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7.8AI score0.04787EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2020/04/16 12:0 a.m.25 views

Foxit Reader XFA Widget Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of widge...

7.8CVSS2.2AI score0.04787EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/12/10 12:0 a.m.22 views

Adobe Acrobat Pro DC XFA Form Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processin...

7.8CVSS2.9AI score0.04073EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/10/15 12:0 a.m.29 views

Adobe Acrobat Reader DC XFA Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

7.8CVSS2.5AI score0.03637EPSS
Exploits0References1
Rows per page
Query Builder