Pdf Editor@11.0 Security Vulnerabilities and Issues — Pdf Editor@11.0 CVE List

Lucene search

FoxitPdf Editor11.0

27 matches found

CVE•added 2022/08/29 5:15 a.m.•188 views

CVE-2022-25641

Foxit PDF Reader before 11.2.2 and PDF Editor before 11.2.2, and PhantomPDF before 10.1.8, mishandle cross-reference information during compressed-object parsing within signed documents. This leads to delivery of incorrect signature information via an Incremental Saving Attack and a Shadow Attack.

5.5CVSS6AI score0.00063EPSS

CVE•added 2022/03/10 5:47 p.m.•113 views

CVE-2022-25108

Foxit PDF Reader and Editor before 11.2.1 and PhantomPDF before 10.1.7 allow a NULL pointer dereference during PDF parsing because the pointer is used without proper validation.

5.5CVSS7.3AI score0.00164EPSS

CVE•added 2022/05/11 8:15 p.m.•105 views

CVE-2022-30557

Foxit PDF Reader and PDF Editor before 11.2.2 have a Type Confusion issue that causes a crash because of Unsigned32 mishandling during JavaScript execution.

7.5CVSS7.5AI score0.00558EPSS

CVE•added 2022/07/18 7:15 p.m.•99 views

CVE-2022-28672

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the ha...

7.8CVSS7.7AI score0.17802EPSS

CVE•added 2022/08/29 5:15 a.m.•96 views

CVE-2021-41783

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.0011EPSS

CVE•added 2022/07/18 7:15 p.m.•91 views

CVE-2022-28681

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.1.53537. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

6.1CVSS6.4AI score0.00169EPSS

CVE•added 2022/07/18 7:15 p.m.•90 views

CVE-2022-28670

7.8CVSS7.2AI score0.00179EPSS

CVE•added 2022/08/29 5:15 a.m.•83 views

CVE-2021-41782

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.0011EPSS

CVE•added 2022/08/29 5:15 a.m.•81 views

CVE-2021-41785

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.0011EPSS

CVE•added 2022/07/18 7:15 p.m.•81 views

CVE-2022-28682

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/07/18 7:15 p.m.•80 views

CVE-2022-28671

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/07/18 7:15 p.m.•79 views

CVE-2022-28673

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/07/18 7:15 p.m.•77 views

CVE-2022-28679

7.8CVSS7.7AI score0.00364EPSS

CVE•added 2022/07/18 7:15 p.m.•74 views

CVE-2022-28674

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/08/29 5:15 a.m.•73 views

CVE-2021-41780

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.0011EPSS

CVE•added 2022/08/29 5:15 a.m.•72 views

CVE-2021-41784

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.03221EPSS

CVE•added 2022/07/18 7:15 p.m.•71 views

CVE-2022-28683

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/07/18 7:15 p.m.•69 views

CVE-2022-34873

3.3CVSS3.2AI score0.00743EPSS

CVE•added 2022/07/18 7:15 p.m.•67 views

CVE-2022-28676

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/07/18 7:15 p.m.•67 views

CVE-2022-28677

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/08/29 5:15 a.m.•64 views

CVE-2021-40326

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, mishandle hidden and incremental data in signed documents. An attacker can write to an arbitrary file, and display controlled contents, during signature verification.

5.5CVSS6.2AI score0.00064EPSS

CVE•added 2022/07/18 7:15 p.m.•63 views

CVE-2022-34875

3.3CVSS3.2AI score0.00711EPSS

CVE•added 2022/07/18 7:15 p.m.•62 views

CVE-2022-28678

7.8CVSS7.7AI score0.00364EPSS

CVE•added 2022/07/18 7:15 p.m.•61 views

CVE-2022-28669

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/08/29 5:15 a.m.•58 views

CVE-2021-41781

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

7.8CVSS7.8AI score0.0011EPSS

CVE•added 2022/07/18 7:15 p.m.•54 views

CVE-2022-28675

7.8CVSS7.7AI score0.00395EPSS

CVE•added 2022/07/18 7:15 p.m.•53 views

CVE-2022-34874

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.2.53575. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

3.3CVSS3.2AI score0.00743EPSS