Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxitsoftware foxit reader vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-26537
An issue exists in Foxit Reader and PhantomPDF prior to 10.1. In a certain Shading calculation, the number of outputs is unequal to the number of color components in a color space. This causes an out-of-bounds write.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
7.5
CVSSv2
CVE-2021-38568
An issue exists in Foxit Reader and PhantomPDF prior to 10.1.4. It allows memory corruption during conversion of a PDF document to a different document format.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
5
CVSSv2
CVE-2021-38569
An issue exists in Foxit Reader and PhantomPDF prior to 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
6.4
CVSSv2
CVE-2021-38570
An issue exists in Foxit Reader and PhantomPDF prior to 10.1.4. It allows malicious users to delete arbitrary files (during uninstallation) via a symlink.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
7.5
CVSSv2
CVE-2021-38572
An issue exists in Foxit Reader and PhantomPDF prior to 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
7.5
CVSSv2
CVE-2021-38573
An issue exists in Foxit Reader and PhantomPDF prior to 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
7.5
CVSSv2
CVE-2021-38574
An issue exists in Foxit Reader and PhantomPDF prior to 10.1.4. It allows SQL Injection via crafted data at the end of a string.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
6.8
CVSSv2
CVE-2018-10303
A use-after-free in Foxit Reader prior to 9.1 and PhantomPDF prior to 9.1 allows remote malicious users to execute arbitrary code, aka iDefense ID V-y0nqfutlf3.
Foxitsoftware Phantompdf
Foxitsoftware Foxit Reader
6.8
CVSSv2
CVE-2018-1177
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fla...
Foxitsoftware Phantompdf
Foxitsoftware Foxit Reader
6.8
CVSSv2
CVE-2016-4059
Use-after-free vulnerability in Foxit Reader and PhantomPDF prior to 7.3.4 on Windows allows remote malicious users to execute arbitrary code via a crafted FlateDecode stream in a PDF document.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49333
CVE-2024-33901
CVE-2024-36001
CVE-2024-2835
firewall
XPath injection
authentication bypass
CVE-2024-22120
CVE-2024-32002
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »