Lucene search

K
FoxitsoftwareFoxit Reader

372 matches found

CVE
CVE
added 2021/05/07 9:15 p.m.48 views

CVE-2021-31454

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

7.8CVSS8.5AI score0.03065EPSS
CVE
CVE
added 2021/08/11 10:15 p.m.48 views

CVE-2021-38571

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows DLL hijacking, aka CNVD-C-2021-68000 and CNVD-C-2021-68502.

7.8CVSS7.5AI score0.00032EPSS
CVE
CVE
added 2021/08/11 10:15 p.m.48 views

CVE-2021-38572

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.

9.8CVSS9.3AI score0.00023EPSS
CVE
CVE
added 2017/04/04 6:59 p.m.47 views

CVE-2016-3740

Heap-based buffer overflow in the CreateFXPDFConvertor function in ConvertToPdf_x86.dll in Foxit Reader 7.3.4.311 allows remote attackers to execute arbitrary code via a large SamplesPerPixel value in a crafted TIFF image that is mishandled during PDF conversion. This is fixed in 8.0.

7.8CVSS7.9AI score0.01301EPSS
CVE
CVE
added 2016/04/22 3:59 p.m.47 views

CVE-2016-4059

Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via a crafted FlateDecode stream in a PDF document.

7.8CVSS7.8AI score0.01302EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-14820

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.5CVSS7.2AI score0.0019EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-14831

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the autho...

8.8CVSS8.8AI score0.00367EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-14834

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the style...

8.8CVSS8.8AI score0.00367EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-16572

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within FormCalc'...

8.8CVSS8.8AI score0.0025EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-16577

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the align...

8.8CVSS8.8AI score0.00367EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-16579

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 8.3.2.25013. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.5CVSS7.3AI score0.00103EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-16582

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the clear...

8.8CVSS8.8AI score0.0025EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.47 views

CVE-2017-16589

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.5CVSS7.2AI score0.00103EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.47 views

CVE-2018-10473

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

8.8CVSS8.8AI score0.00474EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.47 views

CVE-2018-10474

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

8.8CVSS8.8AI score0.00474EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.47 views

CVE-2018-10481

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.5CVSS6.5AI score0.00412EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.47 views

CVE-2018-10494

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

8.8CVSS8.8AI score0.00474EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-11622

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within ConvertToP...

8.8CVSS8.8AI score0.00543EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14268

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the mailFo...

8.8CVSS8.8AI score0.00264EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14280

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the export...

8.8CVSS8.8AI score0.0107EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14287

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

8.8CVSS8.8AI score0.00264EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14290

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

8.8CVSS8.8AI score0.00474EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14293

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.1.0.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

8.8CVSS8.8AI score0.00345EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14299

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the proces...

8.8CVSS8.8AI score0.00387EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14302

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the proces...

8.8CVSS8.8AI score0.00387EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.47 views

CVE-2018-14311

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA e...

8.8CVSS8.8AI score0.00264EPSS
CVE
CVE
added 2018/11/17 9:29 p.m.47 views

CVE-2018-19341

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation near NULL starting at FoxitReader!std...

7.1CVSS7.2AI score0.00071EPSS
CVE
CVE
added 2018/11/17 9:29 p.m.47 views

CVE-2018-19342

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation starting at U3DBrowser+0x000000000000...

7.1CVSS7.2AI score0.00144EPSS
CVE
CVE
added 2018/11/17 9:29 p.m.47 views

CVE-2018-19345

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation near NULL starting at U3DBrowser!Plug...

7.1CVSS7.2AI score0.00071EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.47 views

CVE-2018-9941

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handl...

8.8CVSS8.8AI score0.00264EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.47 views

CVE-2018-9942

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handl...

8.8CVSS8.8AI score0.00264EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.47 views

CVE-2018-9954

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

8.8CVSS8.8AI score0.00387EPSS
CVE
CVE
added 2020/10/02 8:15 a.m.47 views

CVE-2020-26535

An issue was discovered in Foxit Reader and PhantomPDF before 10.1. If TslAlloc attempts to allocate thread local storage but obtains an unacceptable index value, V8 throws an exception that leads to a write access violation (and read access violation).

9.8CVSS8.7AI score0.00023EPSS
CVE
CVE
added 2020/10/02 8:15 a.m.47 views

CVE-2020-26538

An issue was discovered in Foxit Reader and PhantomPDF before 10.1. It allows attackers to execute arbitrary code via a Trojan horse taskkill.exe in the current working directory.

7.8CVSS7.8AI score0.00012EPSS
CVE
CVE
added 2021/05/07 9:15 p.m.47 views

CVE-2021-31441

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

7.8CVSS8.4AI score0.03065EPSS
CVE
CVE
added 2021/08/11 8:15 p.m.47 views

CVE-2021-33793

Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion.

9.8CVSS9.5AI score0.00027EPSS
CVE
CVE
added 2016/04/13 3:59 p.m.46 views

CVE-2015-8843

The Foxit Cloud Update Service (FoxitCloudUpdateService) in Foxit Reader 6.1 through 6.2.x and 7.x before 7.2.2, when an update to the Cloud plugin is available, allows local users to gain privileges by writing crafted data to a shared memory region, which triggers memory corruption.

7.4CVSS7.4AI score0.00003EPSS
CVE
CVE
added 2016/04/22 3:59 p.m.46 views

CVE-2016-4062

Foxit Reader and PhantomPDF before 7.3.4 on Windows improperly report format errors recursively, which allows remote attackers to cause a denial of service (application hang) via a crafted PDF.

5.5CVSS6AI score0.00038EPSS
CVE
CVE
added 2016/04/22 3:59 p.m.46 views

CVE-2016-4063

Use-after-free vulnerability in Foxit Reader and PhantomPDF before 7.3.4 on Windows allows remote attackers to execute arbitrary code via an object with a revision number of -1 in a PDF document.

7.8CVSS7.8AI score0.01544EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.46 views

CVE-2017-10959

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the setAc...

8.8CVSS8.8AI score0.00367EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.46 views

CVE-2017-14836

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the modDate att...

8.8CVSS8.8AI score0.00367EPSS
CVE
CVE
added 2017/12/20 2:29 p.m.46 views

CVE-2017-14837

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the pageS...

8.8CVSS8.8AI score0.0025EPSS
CVE
CVE
added 2017/05/03 5:59 a.m.46 views

CVE-2017-8454

Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.

8.8CVSS8.8AI score0.01208EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.46 views

CVE-2018-10482

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

6.5CVSS6.5AI score0.00412EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.46 views

CVE-2018-10484

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

8.8CVSS8.8AI score0.00235EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.46 views

CVE-2018-10493

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

6.5CVSS6.5AI score0.00223EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.46 views

CVE-2018-11621

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Co...

6.5CVSS6.8AI score0.00201EPSS
CVE
CVE
added 2018/07/31 8:29 p.m.46 views

CVE-2018-11623

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the addAdL...

8.8CVSS8.8AI score0.00298EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.46 views

CVE-2018-1176

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

8.8CVSS8.8AI score0.007EPSS
CVE
CVE
added 2018/05/17 3:29 p.m.46 views

CVE-2018-1178

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handl...

8.8CVSS8.8AI score0.00387EPSS
Total number of security vulnerabilities372