Lucene search

K
FoxitsoftwareFoxit Reader

6 matches found

CVE
CVE
added 2020/12/22 7:15 p.m.259 views

CVE-2020-13547

A type confusion vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger an improper use of an object, resulting in memory corruption and arbitrary code execution. An attacker needs to trick the user to o...

8.8CVSS8.9AI score0.01021EPSS
CVE
CVE
added 2020/12/31 9:15 p.m.84 views

CVE-2020-35931

An issue was discovered in Foxit Reader before 10.1.1 (and before 4.1.1 on macOS) and PhantomPDF before 9.7.5 and 10.x before 10.1.1 (and before 4.1.1 on macOS). An attacker can spoof a certified PDF document via an Evil Annotation Attack because the products fail to consider a null value for a Sub...

7.8CVSS7.6AI score0.00087EPSS
CVE
CVE
added 2020/12/22 6:15 p.m.75 views

CVE-2020-13557

A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicio...

8.8CVSS8.8AI score0.14029EPSS
CVE
CVE
added 2020/12/22 6:15 p.m.50 views

CVE-2020-13560

A use after free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicio...

8.8CVSS8.8AI score0.198EPSS
CVE
CVE
added 2020/12/22 6:15 p.m.50 views

CVE-2020-13570

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.0.37527. A specially crafted PDF document can trigger the reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the malicious...

8.8CVSS8.8AI score0.05295EPSS
CVE
CVE
added 2020/12/15 1:15 p.m.50 views

CVE-2020-28203

An issue was discovered in Foxit Reader and PhantomPDF 10.1.0.37527 and earlier. There is a null pointer access/dereference while opening a crafted PDF file, leading the application to crash (denial of service).

5.5CVSS6AI score0.00022EPSS