CVE-2020-13547

CVE-2020-13547 is a type-confusion vulnerability in Foxit PDF Reader 10.1.0.37527’s JavaScript engine. A crafted PDF can trigger memory corruption and arbitrary code execution; exploitation requires user action (opening the malicious file), or, if a browser plugin is enabled, visiting a malicious...

CVE-2021-31476

CVE-2021-31476 affects Foxit PhantomPDF 10.1.3.37598. The flaw is in the handling of XFA templates and stems from a lack of input validation, leading to a type confusion condition. This can allow remote attackers to execute arbitrary code in the context of the target process, with user interactio...

CVE-2019-17139

Foxit PhantomPDF 9.5.0.20723 is affected by CVE-2019-17139 due to an out-of-bounds write in the HTML2PDF plugin while processing JavaScript. The flaw arises from insufficient validation of user-supplied data, enabling remote code execution in the context of the current process. Exploitation requi...

CVE-2008-1104

Foxit Reader

CVE-2018-9958

Foxit Reader 9.0.1.1049 is affected by CVE-2018-9958, a Use-After-Free in the Text Annotations handling that can lead to remote code execution. The flaw occurs when setting the point attribute of an annotation object without validating existence, allowing an attacker to run code in the victim pro...

CVE-2019-13123

Foxit Reader (Windows) versions 9.6.0.25114 and earlier are affected by a denial-of-service due to two RecursiveCall bugs in the V8 JavaScript engine that exhaust stack memory via uncontrolled recursion (issue 1 of 2). The vulnerability is tied to the V8 engine within Foxit Reader and impacts the...

CVE-2019-13124

CVE-2019-13124 affects Foxit Reader 9.6.0.25114 and earlier, due to two RecursiveCall bugs in the V8 JavaScript engine that cause uncontrolled recursion, exhausting stack memory in three functions. This is described as a denial of service/crash risk related to stack exhaustion. The connected docu...

CVE-2020-35931

Foxit PDF products are affected by CVE-2020-35931: Foxit Reader before 10.1.1 and PhantomPDF before 9.7.5, and 10.x before 10.1.1 (also macOS 4.1.x) are vulnerable to an Evil Annotation Attack that can spoof certified PDFs by not handling a null Subtype in the Annotation dictionary during increme...

CVE-2018-9948

The provided connected documents confirm CVE-2018-9948 affects Foxit Reader (notably v9.0.x), describing a Use-After-Free flaw in the Text Annotations component and in TypedArray handling due to uninitialized pointers. Exploitation requires a crafted PDF/file and can lead to remote code execution...

CVE-2020-13557

CVE-2020-13557 is a use-after-free in Foxit PDF Reader’s JavaScript engine (Foxit Reader 10.1.0.37527). A crafted PDF can trigger reuse of freed memory, enabling arbitrary code execution. User interaction is required (opening the malicious file); if the browser plugin is enabled, visiting a malic...

CVE-2017-10952

CVE-2017-10952 affects Foxit Reader (and related Foxit products) with a vulnerability in the saveAs JavaScript function. The flaw allows writing arbitrary files to attacker-controlled locations and can lead to code execution under the current process, with exploitation requiring user interaction ...

CVE-2021-33792

CVE-2021-33792 affects Foxit Reader prior to 10.1.4 and Foxit PhantomPDF prior to 10.1.4. The root cause is an out-of-bounds write triggered by a crafted /Size key in the Trailer dictionary. Public references consistently describe a buffer/space issue leading to memory corruption in these PDF pro...

CVE-2020-14425

Foxit Reader before 10.0 is affected by CVE-2020-14425, enabling Remote Command Execution via the app.opencPDFWebPage JavaScript API; an attacker can execute local files and bypass the security dialog. Exploit activity exists (Exploit-DB). Some advisories (e.g., NCSC) note fixes/updates are avail...

CVE-2021-21822

CVE-2021-21822 is a use-after-free in Foxit Software’s PDF Reader JavaScript engine (notably around Foxit Reader/PhantomPDF, versions including 10.1.3.37598). A specially crafted PDF can reuse freed memory, enabling arbitrary code execution when the user opens a malicious file or site with the br...

CVE-2017-10943

CVE-2017-10943 affects Foxit Reader 8.3.0.14878 and earlier. The issue arises from PDF parsing and improper validation, causing an out-of-bounds read (read past the end of an allocated object) that can disclose sensitive information. Exploitation described in sources involves a user-assisted vect...

CVE-2018-3939

CVE-2018-3939 is a use-after-free vulnerability in Foxit Software’s PDF Reader (version 9.1.0.5096) JavaScript engine. A specially crafted PDF can trigger reuse of a previously freed memory object, enabling arbitrary code execution. Exploitation requires user interaction (opening the malicious PD...

CVE-2019-6764

Foxit Reader 9.4.1.16828 is affected by CVE-2019-6764 due to improper validation in the processing of XFA Template objects, causing a write past the end of an allocated structure. This enables remote code execution and requires user interaction (victim must visit a malicious page or open a malici...

CVE-2021-38574

CVE-2021-38574 affects Foxit Reader and Foxit PhantomPDF prior to 10.1.4. The issue is a SQL injection vulnerability triggered by crafted data at the end of a string in database-related processing. Affected components/locations are not further specified in the provided material. Impact is describ...

CVE-2021-33795

CVE-2021-33795 affects Foxit Reader before 10.1.4 and Foxit PhantomPDF before 10.1.4. The root cause is mishandling of the certificate name, document owner, and signature author in PDF signatures, resulting in incorrect document signatures. Reported impact indicates partial integrity impact with ...

CVE-2018-3853

CVE-2018-3853 is an exploitable use-after-free in Foxit PDF Reader’s JavaScript engine (version 9.0.1.1049). A specially crafted PDF can trigger reuse of a previously freed object, enabling arbitrary code execution. An attacker must entice the user to open the malicious PDF to trigger the flaw; i...

CVE-2018-18688

The CVE-2018-18688 entry describes a signature-validation bypass in PDF processing that arises because the PDF specification lacks concrete validation procedures for incremental savings. Affected products include Foxit Reader (pre-9.4), Foxit PhantomPDF (pre-8.3.9 and pre-9.4 for 9.x), and other ...

CVE-2019-6773

Summary: CVE-2019-6773 affects Foxit Reader 9.4.1.16828. The vulnerability arises from improper handling of the richValue property of a Field object within AcroForms, due to a missing validation of the object before performing operations. This leads to information disclosure via crafted pages/fil...

CVE-2020-17410

Foxit PhantomPDF 10.0.0.35798 and earlier is affected by a GIF file parsing use-after-free vulnerability. The bug stems from not validating the existence of an object before performing operations, enabling arbitrary code execution in the context of the current process. Exploitation requires user ...

CVE-2018-3843

Foxit PDF Reader 9.0.1.1049 is affected by a type-confusion vulnerability (CVE-2018-3843) in parsing files with associated file annotations. A crafted PDF can cause dereference of an object of invalid type, potentially leading to memory disclosure and possibly arbitrary code execution. Exploitati...

CVE-2023-32616

Summary: CVE-2023-32616 is a use-after-free in Foxit Reader 12.1.2.15356 affecting 3D annotations. A specially crafted Javascript in a malicious PDF can reuse a freed object, causing memory corruption and arbitrary code execution. Exploitation requires user action (opening the malicious PDF) or, ...

CVE-2018-3924

CVE-2018-3924 describes a use-after-free vulnerability in Foxit PDF Reader’s JavaScript engine affecting Foxit PDF Reader version 9.1.5096 (and related Foxit offerings). The issue allows an attacker to trigger reuse of a previously freed memory object via a specially crafted PDF document, potenti...

CVE-2009-0191

Foxit Reader is vulnerable to remote code execution via a crafted PDF due to a JBIG2 symbol dictionary processing error (zero new symbols). Affected versions are Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506 (including 3.0.2009.1301). The issue can cause a dereference of uninitiali...

CVE-2020-10913

The CVE-2020-10913 issue is a Type Confusion remote code execution in Foxit PhantomPDF/Reader caused by improper validation in the OCRAndExportToExcel command of the communication API. Exploitation requires user interaction (the target must visit a malicious page or open a malicious file). Affect...

CVE-2020-13548

CVE-2020-13548 – Foxit Reader is affected when a specially crafted PDF (11) triggers reuse of previously freed memory, enabling arbitrary code execution. Affected product/version (per sources): Foxit Reader 10.1.0.37527 (and related Foxit Reader/PhantomPDF components). Attack vector: user must op...

CVE-2016-4065

The CVE-2016-4065 issue affects Foxit Reader and Foxit PhantomPDF on Windows, where the ConvertToPDF plugin can trigger an out-of-bounds read in image handling (JPEG/GIF/BMP) when the gflags app is enabled, causing a denial of service (application crash). Affected versions are Foxit Reader/Phanto...

CVE-2017-10942

CVE-2017-10942 affects Foxit Reader (and related Foxit PDF tools) prior to 8.3.1, including 8.3.0.14878. The flaw is an out-of-bounds read during PDF parsing that can cause disclosure of sensitive data by reading past the end of an allocated object. Exploitation requires user interaction (e.g., v...

CVE-2017-10944

Foxit Reader 8.3.0.14878 and earlier is affected by CVE-2017-10944 due to an out-of-bounds read in the ObjStm object parsing. The flaw stems from improper validation of input data, enabling an information disclosure vulnerability when a user opens a malicious PDF or visits a crafted page; exploit...

CVE-2017-10948

CVE-2017-10948 affects Foxit Reader (v8.2.1.6871) and is caused by a failure to validate an object before operations in app.execMenuItem, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a crafted file). Multiple connected sources (OpenV...

CVE-2018-10493

CVE-2018-10493 affects Foxit Reader 9.0.1.1049. The vulnerability is an information disclosure arising from improper validation of user-supplied data in the U3D Final Maximum Resolution attribute, causing a read past the end of an allocated object. Exploitation requires user interaction (maliciou...

CVE-2018-11619

CVE-2018-11619 affects Foxit Reader. The vulnerability lies in the handling of the setFocus method where an object’s existence is not validated before operations, enabling a remote attacker to execute arbitrary code in the context of the current process. Exploitation requires user interaction (vi...

CVE-2019-6754

CVE-2019-6754 affects Foxit Reader (example: 9.3.10826) via the localFileStorage method. The flaw arises from insufficient validation of a user-supplied path used in file operations, enabling an attacker to execute code in the current process after user interaction (visit a malicious page or open...

CVE-2019-6772

Foxit Reader (version 2019.010.20098) is affected by CVE-2019-6772 via the removeField method in AcroForms, where the code fails to validate object existence before operations. This can lead to information disclosure and, when combined with other vulnerabilities, potential code execution in the p...

CVE-2017-10951

CVE-2017-10951 affects Foxit Reader 8.x (e.g., 8.3.0.14878) and Foxit PhantomPDF prior to 8.3.2. The vulnerability arises from improper validation of a user-supplied string used in the app.launchURL JavaScript call, enabling an attacker to execute arbitrary code under the current process context....

CVE-2019-6759

CVE-2019-6759 affects Foxit Reader (Windows) with the flaw located in the ConvertToPDF_x86.dll. The issue stems from insufficient validation of user-supplied data, allowing a write past the end of an allocated object in ConvertToPDF_x86.dll and enabling arbitrary code execution in the context of ...

CVE-2020-27860

The CVE-2020-27860 entry affects Foxit Reader 10.0.1.35811, with the root cause in the processing of XFA templates due to insufficient validation that can cause a write past the end of an allocated data structure. This can allow remote code execution in the context of the current process, with us...

CVE-2021-38568

CVE-2021-38568 affects Foxit Reader and Foxit PhantomPDF prior to 10.1.4. The issue is memory corruption during the conversion of a PDF document to another format. Public sources consistently describe the vulnerability but do not provide explicit exploitation details or fixes beyond noting the af...

CVE-2019-6755

CVE-2019-6755 affects Foxit Reader 9.3.10826. The vulnerability is a write-past-the-end in ConvertToPDF_x86.dll caused by inadequate validation of user-supplied data, leading to remote code execution in the current process. Exploitation requires user interaction (visiting a malicious page or open...

CVE-2021-38570

CVE-2021-38570 affects Foxit Reader and Foxit PhantomPDF versions prior to 10.1.4. The issue allows an attacker to delete arbitrary files during uninstallation by abusing a symlink, enabling file deletion on the user’s system. Exploitation details are not provided in the supplied documents. The v...

CVE-2023-40194

Foxit Reader 12.1.3.15356 contains an arbitrary file creation vulnerability in the Javascript exportDataObject API due to whitespace handling. A crafted malicious file can create files at arbitrary locations, potentially enabling arbitrary code execution. Exploitation requires user action (openin...

CVE-2017-10941

Foxit Reader/Phantom versions up to 8.3.0.14878 (and earlier) are affected by CVE-2017-10941 and related CVEs. The root cause is a use-after-free in AFParseDateEx due to failing to validate object existence before operations, enabling remote code execution under the process context. Exploitation ...

CVE-2017-16584

Foxit Reader 8.3.2.25013 contains a vulnerability in util.printf that allows read past the end of an allocated object, enabling information disclosure. Exploitation requires user interaction (e.g., visiting a malicious page or opening a malicious file) and can be combined with other flaws to exec...

CVE-2018-10302

CVE-2018-10302 describes a use-after-free vulnerability in Foxit Reader before 9.1 and PhantomPDF before 9.1 that can allow remote attackers to execute arbitrary code. The issue is cited as the iDefense ID V-jyb51g3mv9. Connected sources confirm the affected products (Foxit Reader/PhantomPDF) and...

CVE-2018-18689

CVE-2018-18689 describes a Signature Wrapping issue in PDF signature validation caused by missing guidance in the PDF spec, allowing attackers to manipulate /ByteRange and xref without detection. The vulnerability affects Foxit Reader before 9.4 and PhantomPDF before 8.3.9 and 9.x before 9.4, as ...

CVE-2019-6760

Foxit Reader 9.4.16811 is affected by CVE-2019-6760 due to an out-of-bounds write in ConvertToPDF_x86.dll caused by insufficient validation of user-supplied data. This allows remote attackers to execute arbitrary code, with user interaction required (the target must visit a malicious page or open...

CVE-2021-38573

Foxit Reader and Foxit PhantomPDF are affected by CVE-2021-38573. The vulnerability arises from not validating the CombineFiles pathname, enabling arbitrary file writes via this component/file handling; affected product versions are prior to 10.1.4. The issue is described across multiple sources ...