Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxitsoftware reader vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2790
Foxit Reader, Enterprise Reader, and PhantomPDF prior to 7.1 allow remote malicious users to cause a denial of service (memory corruption and crash) via a crafted (1) Ubyte Size in a DataSubBlock structure or (2) LZWMinimumCodeSize in a GIF image.
Foxitsoftware Phantompdf
Foxitsoftware Foxit Reader
Foxitsoftware Enterprise Reader
2 EDB exploits
NA
CVE-2009-0836
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 1120 and 1301, does not require user confirmation before performing dangerous actions defined in a PDF file, which allows remote malicious users to execute arbitrary programs and have unspecified other impact...
Foxitsoftware Reader 2.3
Foxitsoftware Reader 3.0
8.1
CVSSv3
CVE-2018-20310
Foxit Reader prior to 9.5, and PhantomPDF prior to 8.3.10 and 9.x prior to 9.5, has a proxyDoAction race condition that can cause a stack-based buffer overflow or an out-of-bounds read.
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.1
CVSSv3
CVE-2018-20313
Foxit Reader prior to 9.5, and PhantomPDF prior to 8.3.10 and 9.x prior to 9.5, has a proxyPreviewAction race condition that can cause a stack-based buffer overflow or an out-of-bounds read.
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.1
CVSSv3
CVE-2018-20314
Foxit Reader prior to 9.5, and PhantomPDF prior to 8.3.10 and 9.x prior to 9.5, has a proxyCheckLicence race condition that can cause a stack-based buffer overflow or an out-of-bounds read.
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2018-3945
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attac...
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2018-3994
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.2.0.9297. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attac...
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.5
CVSSv3
CVE-2019-20818
An issue exists in Foxit Reader and PhantomPDF prior to 9.7. It allows memory consumption because data is created for each page of an application level.
Foxitsoftware Phantompdf
Foxitsoftware Reader
4.3
CVSSv3
CVE-2019-20835
An issue exists in Foxit Reader and PhantomPDF prior to 9.5. It has homograph mishandling.
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.8
CVSSv3
CVE-2018-17692
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit PhantomPDF 9.2.0.9297. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific ...
Foxitsoftware Phantompdf
Foxitsoftware Reader
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »