Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxit pdf reader vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-27379
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 12.1.2.15332. By prematurely deleting objects associated with pages, a specially crafted PDF document can trigger the reuse of previously freed memory, which can lead to a...
Foxit Pdf Reader 12.1.2.15332
605
VMScore
CVE-2018-3850
An exploitable use-after-free vulnerability exists in the JavaScript engine Foxit Software Foxit PDF Reader version 9.0.1.1049. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs ...
Foxit Pdf Reader 9.0.1.1049
481
VMScore
CVE-2014-6853
The Foxit MobilePDF - PDF Reader (aka com.foxit.mobile.pdf.lite) application 2.2.0.0616 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Foxitsoftware Foxit Mobilepdf - Pdf Reader 2.2.0.0616
935
VMScore
CVE-2010-1239
Foxit Reader prior to 3.2.1.0401 allows remote malicious users to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequenc...
Foxitsoftware Foxit Reader 3.1.1.0901
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 3.1.0.0824
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Reader 3.1.3.1030
Foxitsoftware Foxit Reader 3.1.1.0928
1 EDB exploit
383
VMScore
CVE-2017-8059
Acceptance of invalid/self-signed TLS certificates in "Foxit PDF - PDF reader, editor, form, signature" prior to 5.4 for iOS allows a man-in-the-middle and/or physically proximate malicious user to silently intercept login information (username/password), in addition to...
Foxitsoftware Foxit Pdf 5.3.2
Foxitsoftware Foxit Pdf 5.2.1
828
VMScore
CVE-2011-1908
Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader prior to 4.0.0.0619 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted font in a PDF document.
Foxitsoftware Foxit Reader 3.1.3
Foxitsoftware Foxit Reader 3.1
Foxitsoftware Foxit Reader 3.3.1
Foxitsoftware Foxit Reader 3.1.4
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
Foxitsoftware Foxit Reader 3.1.1
Foxitsoftware Foxit Reader 3.2.1
Foxitsoftware Foxit Reader 3.2
Foxitsoftware Foxit Reader
828
VMScore
CVE-2011-0332
Integer overflow in Foxit Reader prior to 4.3.1.0218 and Foxit Phantom prior to 2.3.3.1112 allows remote malicious users to execute arbitrary code via crafted ICC chunks in a PDF file, which triggers a heap-based buffer overflow.
Foxitsoftware Foxit Reader 3.3.1
Foxitsoftware Foxit Reader 3.1.1
Foxitsoftware Foxit Reader 3.1.3
Foxitsoftware Foxit Reader 3.1.4
Foxitsoftware Foxit Reader 3.2.1
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
Foxitsoftware Foxit Reader 3.2
Foxitsoftware Foxit Reader 4.1.1
Foxitsoftware Foxit Reader 4.0
Foxitsoftware Foxit Reader 3.1
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Phantom 2.2.4
Foxitsoftware Foxit Phantom 2.2.3
Foxitsoftware Foxit Phantom 2.2.1
Foxitsoftware Foxit Phantom 2.1.1
Foxitsoftware Foxit Phantom 2.1
Foxitsoftware Foxit Phantom 2.0
Foxitsoftware Foxit Phantom
Foxitsoftware Foxit Phantom 2.2
828
VMScore
CVE-2008-1104
Stack-based buffer overflow in Foxit Reader prior to 2.3 build 2912 allows user-assisted remote malicious users to execute arbitrary code via a crafted PDF file, related to the util.printf JavaScript function and floating point specifiers in format strings.
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
828
VMScore
CVE-2009-0191
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote malicious users to execute arbitrary code via a crafted PDF file that triggers a dereferenc...
Foxitsoftware Foxit Reader 3.0.2009.1301
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
383
VMScore
CVE-2021-27517
Foxit PDF SDK For Web up to and including 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert (in the Acrobat JavaScript API).
Foxit Phantompdf
Foxit Reader
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »