Reader Security Vulnerabilities and Issues — Reader CVE List

Lucene search

FoxitsoftwareReader

259 matches found

CVE•added 2019/10/04 8:15 p.m.•190 views

CVE-2019-17183

Foxit Reader before 9.7 allows an Access Violation and crash if insufficient memory exists.

7.5CVSS8.1AI score0.00018EPSS

CVE•added 2019/10/04 6:15 p.m.•172 views

CVE-2019-13320

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.5.0.20723. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the process...

7.8CVSS7.8AI score0.00606EPSS

CVE•added 2019/10/04 6:15 p.m.•165 views

CVE-2019-13319

7.8CVSS7.8AI score0.00606EPSS

CVE•added 2019/10/04 6:15 p.m.•162 views

CVE-2019-13318

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 9.5.0.20723. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.5CVSS5.5AI score0.00911EPSS

CVE•added 2019/10/04 6:15 p.m.•159 views

CVE-2019-13316

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the hand...

7.8CVSS7.8AI score0.0086EPSS

CVE•added 2019/10/04 6:15 p.m.•159 views

CVE-2019-13317

7.8CVSS7.8AI score0.0086EPSS

CVE•added 2019/10/04 6:15 p.m.•156 views

CVE-2019-6776

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the rem...

7.8CVSS7.6AI score0.00606EPSS

CVE•added 2019/10/04 6:15 p.m.•154 views

CVE-2019-6775

7.8CVSS7.8AI score0.00942EPSS

CVE•added 2019/10/04 6:15 p.m.•153 views

CVE-2019-6774

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.4.1.16828. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the deleteI...

7.8CVSS7.8AI score0.00942EPSS

CVE•added 2019/10/04 6:15 p.m.•152 views

CVE-2019-13315

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit Reader 9.5.0.20723. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the removeFi...

7.8CVSS7.8AI score0.0086EPSS

CVE•added 2019/10/03 10:15 p.m.•128 views

CVE-2019-13331

7.8CVSS8.1AI score0.00536EPSS

CVE•added 2021/05/07 9:15 p.m.•127 views

CVE-2021-31461

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the the ha...

7.8CVSS8.4AI score0.00261EPSS

CVE•added 2019/10/03 10:15 p.m.•125 views

CVE-2019-13332

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the process...

7.8CVSS8.1AI score0.03065EPSS

CVE•added 2019/10/03 10:15 p.m.•121 views

CVE-2019-13328

7.8CVSS8.1AI score0.03065EPSS

CVE•added 2020/02/14 6:15 p.m.•120 views

CVE-2020-8847

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the process...

7.8CVSS7.8AI score0.02412EPSS

CVE•added 2019/10/03 10:15 p.m.•119 views

CVE-2019-13326

7.8CVSS8.1AI score0.03065EPSS

CVE•added 2019/10/03 10:15 p.m.•116 views

CVE-2019-13329

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.5. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of T...

7.8CVSS8.1AI score0.00374EPSS

CVE•added 2019/10/03 10:15 p.m.•112 views

CVE-2019-13327

7.8CVSS8.1AI score0.03065EPSS

CVE•added 2020/02/14 6:15 p.m.•112 views

CVE-2020-8857

7.8CVSS7.8AI score0.01231EPSS

CVE•added 2020/02/14 6:15 p.m.•110 views

CVE-2020-8845

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the hand...

7.8CVSS7.8AI score0.1639EPSS

CVE•added 2020/02/14 6:15 p.m.•110 views

CVE-2020-8849

7.8CVSS7.8AI score0.02412EPSS

CVE•added 2020/02/14 6:15 p.m.•110 views

CVE-2020-8852

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.3CVSS3.3AI score0.20378EPSS

CVE•added 2019/10/03 10:15 p.m.•107 views

CVE-2019-13330

7.8CVSS8.1AI score0.00122EPSS

CVE•added 2020/02/14 6:15 p.m.•102 views

CVE-2020-8853

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the con...

7.8CVSS7.8AI score0.02412EPSS

CVE•added 2020/02/14 6:15 p.m.•101 views

CVE-2020-8850

7.8CVSS7.8AI score0.02412EPSS

CVE•added 2020/02/14 6:15 p.m.•101 views

CVE-2020-8851

7.8CVSS7.8AI score0.02412EPSS

CVE•added 2020/02/14 6:15 p.m.•101 views

CVE-2020-8856

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25608. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the hand...

7.8CVSS7.8AI score0.1639EPSS

CVE•added 2020/02/14 6:15 p.m.•98 views

CVE-2020-8844

7.8CVSS7.9AI score0.19285EPSS

CVE•added 2020/02/14 6:15 p.m.•91 views

CVE-2020-8848

7.8CVSS7.8AI score0.02412EPSS

CVE•added 2020/02/14 6:15 p.m.•89 views

CVE-2020-8855

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.2947. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the fxht...

7.8CVSS7.8AI score0.01933EPSS

CVE•added 2020/02/14 6:15 p.m.•87 views

CVE-2020-8854

7.8CVSS7.8AI score0.02412EPSS

CVE•added 2020/01/16 10:15 p.m.•86 views

CVE-2019-5131

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the...

8.8CVSS8.7AI score0.0742EPSS

CVE•added 2020/02/14 6:15 p.m.•85 views

CVE-2020-8846

7.8CVSS7.8AI score0.1639EPSS

CVE•added 2020/01/16 10:15 p.m.•84 views

CVE-2019-5130

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the ...

8.8CVSS8.7AI score0.03443EPSS

CVE•added 2020/01/16 10:15 p.m.•84 views

CVE-2019-5145

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit PDF Reader, version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the...

8.8CVSS8.7AI score0.0742EPSS

CVE•added 2020/01/16 10:15 p.m.•81 views

CVE-2019-5126

8.8CVSS8.7AI score0.04604EPSS

CVE•added 2009/03/10 8:30 p.m.•80 views

CVE-2009-0836

Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 1120 and 1301, does not require user confirmation before performing dangerous actions defined in a PDF file, which allows remote attackers to execute arbitrary programs and have unspecified other impact via a crafted file, as d...

10CVSS7.6AI score0.1077EPSS

CVE•added 2019/10/02 4:15 p.m.•80 views

CVE-2019-5031

An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code execution. An attacker needs to...

8.8CVSS8.8AI score0.01021EPSS

CVE•added 2021/05/21 3:15 p.m.•80 views

CVE-2021-31473

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.3.37598. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the browse...

7.8CVSS8.4AI score0.01606EPSS

CVE•added 2020/04/22 9:15 p.m.•75 views

CVE-2020-10902

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the han...

7.8CVSS7.8AI score0.0284EPSS

CVE•added 2020/04/22 9:15 p.m.•71 views

CVE-2020-10907

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

7.8CVSS7.8AI score0.03065EPSS

CVE•added 2018/10/08 4:29 p.m.•69 views

CVE-2018-3942

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user t...

8.8CVSS8.3AI score0.00268EPSS

CVE•added 2020/04/22 9:15 p.m.•69 views

CVE-2020-10901

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

4.3CVSS3.3AI score0.11393EPSS

CVE•added 2020/04/22 9:15 p.m.•68 views

CVE-2020-10893

7.8CVSS7.8AI score0.0284EPSS

CVE•added 2018/10/03 3:29 p.m.•67 views

CVE-2018-3993

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the u...

8.8CVSS8.3AI score0.00268EPSS

CVE•added 2020/08/20 1:17 a.m.•67 views

CVE-2020-15638

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.2.29539. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Nod...

7.8CVSS7.9AI score0.00889EPSS

CVE•added 2018/10/02 9:29 p.m.•66 views

CVE-2018-3962

A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free condition can occur when accessing the CreationDate property of the this.info object. An attacker needs to trick the user to open the malicious file to trigger th...

8CVSS7.6AI score0.00127EPSS

CVE•added 2020/04/22 9:15 p.m.•65 views

CVE-2020-10909

7.8CVSS7.9AI score0.00374EPSS

CVE•added 2018/10/03 3:29 p.m.•64 views

CVE-2018-3965

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the u...

8CVSS8.3AI score0.15916EPSS

CVE•added 2020/04/22 9:15 p.m.•64 views

CVE-2020-10903

4.3CVSS3.3AI score0.11393EPSS

Total number of security vulnerabilities259