Pdf Editor Security Vulnerabilities and Issues — Page 2 of Pdf Editor CVE List

Lucene search

FoxitPdf Editor

254 matches found

CVE•added 2024/04/02 9:15 p.m.•77 views

CVE-2024-30345

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

7.8CVSS8.2AI score0.04229EPSS

CVE•added 2020/12/22 6:15 p.m.•76 views

CVE-2020-13557

A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicio...

8.8CVSS8.8AI score0.14029EPSS

CVE•added 2024/04/02 9:15 p.m.•75 views

CVE-2024-30352

7.8CVSS8.2AI score0.04229EPSS

CVE•added 2024/04/02 9:15 p.m.•75 views

CVE-2024-30363

Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must v...

5.5CVSS5.4AI score0.00324EPSS

CVE•added 2024/05/07 11:15 p.m.•74 views

CVE-2021-34950

Foxit PDF Reader Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a maliciou...

7.8CVSS7.9AI score0.01605EPSS

CVE•added 2022/07/18 7:15 p.m.•74 views

CVE-2022-28674

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the ha...

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/08/29 5:15 a.m.•73 views

CVE-2021-41780

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.0011EPSS

CVE•added 2021/05/10 4:15 p.m.•72 views

CVE-2021-21822

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously free memory, which can lead to arbitrary code execution. An attacker needs to trick the user into opening a malic...

8.8CVSS8.8AI score0.198EPSS

CVE•added 2022/08/29 5:15 a.m.•72 views

CVE-2021-41784

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.03221EPSS

CVE•added 2024/05/03 2:15 a.m.•72 views

CVE-2023-27363

Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8AI score0.78929EPSS

CVE•added 2024/04/02 9:15 p.m.•72 views

CVE-2024-30371

7.8CVSS8.2AI score0.02223EPSS

CVE•added 2022/07/18 7:15 p.m.•71 views

CVE-2022-28683

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2024/04/30 3:15 p.m.•70 views

CVE-2024-25575

A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a Lock object. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An attack...

8.8CVSS7.1AI score0.02641EPSS

CVE•added 2024/04/02 8:15 p.m.•70 views

CVE-2024-30337

7.8CVSS8.2AI score0.04229EPSS

CVE•added 2022/07/18 7:15 p.m.•69 views

CVE-2022-34873

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

3.3CVSS3.2AI score0.00382EPSS

CVE•added 2024/04/02 9:15 p.m.•69 views

CVE-2024-30362

Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malici...

7.8CVSS8.2AI score0.02525EPSS

CVE•added 2022/07/18 7:15 p.m.•68 views

CVE-2022-28680

7.8CVSS7.7AI score0.00364EPSS

CVE•added 2024/12/18 4:15 p.m.•68 views

CVE-2024-49576

A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a checkbox CBF_Widget object. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An attac...

8.8CVSS7.7AI score0.00217EPSS

CVE•added 2022/07/18 7:15 p.m.•67 views

CVE-2022-28676

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/07/18 7:15 p.m.•67 views

CVE-2022-28677

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2024/05/03 3:16 a.m.•67 views

CVE-2023-51551

Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a mali...

7.8CVSS7.9AI score0.0121EPSS

CVE•added 2024/04/02 8:15 p.m.•67 views

CVE-2024-30343

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

7.8CVSS8.2AI score0.04229EPSS

CVE•added 2024/04/02 9:15 p.m.•67 views

CVE-2024-30365

7.8CVSS8.2AI score0.02223EPSS

CVE•added 2024/04/02 9:15 p.m.•67 views

CVE-2024-30367

7.8CVSS8.2AI score0.02223EPSS

CVE•added 2024/05/03 2:15 a.m.•66 views

CVE-2023-38108

Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must v...

3.3CVSS3.5AI score0.00264EPSS

CVE•added 2024/05/03 3:16 a.m.•66 views

CVE-2023-51553

Foxit PDF Reader Bookmark Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a m...

3.3CVSS3.3AI score0.00252EPSS

CVE•added 2024/04/02 9:15 p.m.•66 views

CVE-2024-30361

7.8CVSS8.2AI score0.04229EPSS

CVE•added 2022/05/20 1:15 p.m.•65 views

CVE-2022-28104

Foxit PDF Editor v11.3.1 was discovered to contain an arbitrary file upload vulnerability.

9.8CVSS9.6AI score0.00576EPSS

CVE•added 2024/04/03 5:15 p.m.•65 views

CVE-2024-30325

7.8CVSS8.2AI score0.04398EPSS

CVE•added 2024/04/02 9:15 p.m.•65 views

CVE-2024-30351

7.8CVSS8.2AI score0.04229EPSS

CVE•added 2022/08/29 5:15 a.m.•64 views

CVE-2021-40326

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, mishandle hidden and incremental data in signed documents. An attacker can write to an arbitrary file, and display controlled contents, during signature verification.

5.5CVSS6.2AI score0.00064EPSS

CVE•added 2024/05/03 3:16 a.m.•64 views

CVE-2023-51562

Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a m...

3.3CVSS3.3AI score0.00288EPSS

CVE•added 2024/05/07 11:15 p.m.•63 views

CVE-2021-34957

Foxit PDF Editor Highlight Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a ma...

7.8CVSS8AI score0.02165EPSS

CVE•added 2022/07/18 7:15 p.m.•63 views

CVE-2022-34875

3.3CVSS3.2AI score0.00743EPSS

CVE•added 2024/05/03 2:15 a.m.•63 views

CVE-2023-27330

Foxit PDF Reader XFA Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a maliciou...

7.8CVSS8AI score0.27581EPSS

CVE•added 2024/04/03 5:15 p.m.•63 views

CVE-2024-30334

Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

7.8CVSS8.2AI score0.04229EPSS

CVE•added 2024/04/02 6:15 p.m.•63 views

CVE-2024-30335

Foxit PDF Reader AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target mus...

7.1CVSS5.4AI score0.00366EPSS

CVE•added 2024/04/02 9:15 p.m.•63 views

CVE-2024-30347

3.3CVSS5.4AI score0.00409EPSS

CVE•added 2024/04/02 9:15 p.m.•63 views

CVE-2024-30357

Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a mal...

7.8CVSS8.2AI score0.02371EPSS

CVE•added 2024/04/02 9:15 p.m.•63 views

CVE-2024-30364

3.3CVSS5.4AI score0.00358EPSS

CVE•added 2021/02/10 8:15 p.m.•62 views

CVE-2020-13548

In Foxit Reader 10.1.0.37527, a specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a...

8.8CVSS8.8AI score0.25714EPSS

CVE•added 2024/05/07 11:15 p.m.•62 views

CVE-2021-34949

Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

5.5CVSS3.4AI score0.00402EPSS

CVE•added 2024/05/07 11:15 p.m.•62 views

CVE-2021-34974

7.8CVSS8AI score0.02165EPSS

CVE•added 2022/07/18 7:15 p.m.•62 views

CVE-2022-28678

7.8CVSS7.7AI score0.00364EPSS

CVE•added 2024/04/03 5:15 p.m.•62 views

CVE-2024-30330

7.8CVSS8.2AI score0.0372EPSS

CVE•added 2024/04/02 8:15 p.m.•62 views

CVE-2024-30342

7.8CVSS8.2AI score0.04398EPSS

CVE•added 2022/07/18 7:15 p.m.•61 views

CVE-2022-28669

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2024/05/03 2:15 a.m.•61 views

CVE-2023-38106

3.3CVSS3.5AI score0.00345EPSS

CVE•added 2024/05/03 2:15 a.m.•61 views

CVE-2023-38107

7.8CVSS8.5AI score0.01341EPSS

CVE•added 2024/05/03 2:15 a.m.•61 views

CVE-2023-38116

Foxit PDF Reader Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

3.3CVSS3.4AI score0.00231EPSS

Total number of security vulnerabilities254