Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxit pdf reader vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2021-40420
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 11.1.0.52543. A specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the...
Foxit Pdf Reader 11.1.0.52543
5.4
CVSSv2
CVE-2014-6853
The Foxit MobilePDF - PDF Reader (aka com.foxit.mobile.pdf.lite) application 2.2.0.0616 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Foxitsoftware Foxit Mobilepdf - Pdf Reader 2.2.0.0616
9.3
CVSSv2
CVE-2010-1239
Foxit Reader prior to 3.2.1.0401 allows remote malicious users to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequenc...
Foxitsoftware Foxit Reader 3.1.1.0901
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 3.1.0.0824
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Reader 3.1.3.1030
Foxitsoftware Foxit Reader 3.1.1.0928
1 EDB exploit
4.3
CVSSv2
CVE-2017-8059
Acceptance of invalid/self-signed TLS certificates in "Foxit PDF - PDF reader, editor, form, signature" prior to 5.4 for iOS allows a man-in-the-middle and/or physically proximate malicious user to silently intercept login information (username/password), in addition to...
Foxitsoftware Foxit Pdf 5.3.2
Foxitsoftware Foxit Pdf 5.2.1
9.3
CVSSv2
CVE-2011-1908
Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader prior to 4.0.0.0619 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted font in a PDF document.
Foxitsoftware Foxit Reader 3.1.3
Foxitsoftware Foxit Reader 3.1
Foxitsoftware Foxit Reader 3.3.1
Foxitsoftware Foxit Reader 3.1.4
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
Foxitsoftware Foxit Reader 3.1.1
Foxitsoftware Foxit Reader 3.2.1
Foxitsoftware Foxit Reader 3.2
Foxitsoftware Foxit Reader
9.3
CVSSv2
CVE-2011-0332
Integer overflow in Foxit Reader prior to 4.3.1.0218 and Foxit Phantom prior to 2.3.3.1112 allows remote malicious users to execute arbitrary code via crafted ICC chunks in a PDF file, which triggers a heap-based buffer overflow.
Foxitsoftware Foxit Reader 3.3.1
Foxitsoftware Foxit Reader 3.1.1
Foxitsoftware Foxit Reader 3.1.3
Foxitsoftware Foxit Reader 3.1.4
Foxitsoftware Foxit Reader 3.2.1
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
Foxitsoftware Foxit Reader 3.2
Foxitsoftware Foxit Reader 4.1.1
Foxitsoftware Foxit Reader 4.0
Foxitsoftware Foxit Reader 3.1
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Phantom 2.2.4
Foxitsoftware Foxit Phantom 2.2.3
Foxitsoftware Foxit Phantom 2.2.1
Foxitsoftware Foxit Phantom 2.1.1
Foxitsoftware Foxit Phantom 2.1
Foxitsoftware Foxit Phantom 2.0
Foxitsoftware Foxit Phantom
Foxitsoftware Foxit Phantom 2.2
9.3
CVSSv2
CVE-2008-1104
Stack-based buffer overflow in Foxit Reader prior to 2.3 build 2912 allows user-assisted remote malicious users to execute arbitrary code via a crafted PDF file, related to the util.printf JavaScript function and floating point specifiers in format strings.
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
9.3
CVSSv2
CVE-2009-0191
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote malicious users to execute arbitrary code via a crafted PDF file that triggers a dereferenc...
Foxitsoftware Foxit Reader 3.0.2009.1301
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
4.3
CVSSv2
CVE-2015-3632
Foxit Reader, Enterprise Reader, and PhantomPDF prior to 7.1.5 allow remote malicious users to cause a denial of service (memory corruption and crash) via a crafted GIF in a PDF file.
Foxitsoftware Phantompdf
Foxitsoftware Foxit Reader
Foxitsoftware Enterprise Reader
1 EDB exploit
4.3
CVSSv2
CVE-2021-27517
Foxit PDF SDK For Web up to and including 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert (in the Acrobat JavaScript API).
Foxit Phantompdf
Foxit Reader
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »