Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxit pdf reader vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-33876
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15332 handles destroying annotations. Specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previously freed object, which can lead to memory corruption and result in arbitrary...
Foxit Pdf Reader 12.1.2.15332
NA
CVE-2022-32774
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. By prematurely deleting objects associated with pages, a specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to ar...
Foxit Pdf Reader 12.0.1.12430
5.4
CVSSv2
CVE-2014-6853
The Foxit MobilePDF - PDF Reader (aka com.foxit.mobile.pdf.lite) application 2.2.0.0616 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Foxitsoftware Foxit Mobilepdf - Pdf Reader 2.2.0.0616
9.3
CVSSv2
CVE-2010-1239
Foxit Reader prior to 3.2.1.0401 allows remote malicious users to (1) execute arbitrary local programs via a certain "/Type /Action /S /Launch" sequence, and (2) execute arbitrary programs embedded in a PDF document via an unspecified "/Launch /Action" sequenc...
Foxitsoftware Foxit Reader 3.1.1.0901
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 3.1.0.0824
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Reader 3.1.3.1030
Foxitsoftware Foxit Reader 3.1.1.0928
1 EDB exploit
4.3
CVSSv2
CVE-2017-8059
Acceptance of invalid/self-signed TLS certificates in "Foxit PDF - PDF reader, editor, form, signature" prior to 5.4 for iOS allows a man-in-the-middle and/or physically proximate malicious user to silently intercept login information (username/password), in addition to...
Foxitsoftware Foxit Pdf 5.3.2
Foxitsoftware Foxit Pdf 5.2.1
9.3
CVSSv2
CVE-2011-1908
Integer overflow in the Type 1 font decoder in the FreeType engine in Foxit Reader prior to 4.0.0.0619 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted font in a PDF document.
Foxitsoftware Foxit Reader 3.1.3
Foxitsoftware Foxit Reader 3.1
Foxitsoftware Foxit Reader 3.3.1
Foxitsoftware Foxit Reader 3.1.4
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
Foxitsoftware Foxit Reader 3.1.1
Foxitsoftware Foxit Reader 3.2.1
Foxitsoftware Foxit Reader 3.2
Foxitsoftware Foxit Reader
9.3
CVSSv2
CVE-2011-0332
Integer overflow in Foxit Reader prior to 4.3.1.0218 and Foxit Phantom prior to 2.3.3.1112 allows remote malicious users to execute arbitrary code via crafted ICC chunks in a PDF file, which triggers a heap-based buffer overflow.
Foxitsoftware Foxit Reader 3.3.1
Foxitsoftware Foxit Reader 3.1.1
Foxitsoftware Foxit Reader 3.1.3
Foxitsoftware Foxit Reader 3.1.4
Foxitsoftware Foxit Reader 3.2.1
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
Foxitsoftware Foxit Reader 3.2
Foxitsoftware Foxit Reader 4.1.1
Foxitsoftware Foxit Reader 4.0
Foxitsoftware Foxit Reader 3.1
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Phantom 2.2.4
Foxitsoftware Foxit Phantom 2.2.3
Foxitsoftware Foxit Phantom 2.2.1
Foxitsoftware Foxit Phantom 2.1.1
Foxitsoftware Foxit Phantom 2.1
Foxitsoftware Foxit Phantom 2.0
Foxitsoftware Foxit Phantom
Foxitsoftware Foxit Phantom 2.2
9.3
CVSSv2
CVE-2008-1104
Stack-based buffer overflow in Foxit Reader prior to 2.3 build 2912 allows user-assisted remote malicious users to execute arbitrary code via a crafted PDF file, related to the util.printf JavaScript function and floating point specifiers in format strings.
Foxitsoftware Foxit Reader
Foxitsoftware Foxit Reader 2.2
Foxitsoftware Foxit Reader 2.0
9.3
CVSSv2
CVE-2009-0191
Foxit Reader 2.3 before Build 3902 and 3.0 before Build 1506, including 3.0.2009.1301, does not properly handle a JBIG2 symbol dictionary segment with zero new symbols, which allows remote malicious users to execute arbitrary code via a crafted PDF file that triggers a dereferenc...
Foxitsoftware Foxit Reader 3.0.2009.1301
Foxitsoftware Foxit Reader 2.3
Foxitsoftware Foxit Reader 3.0
4.3
CVSSv2
CVE-2021-27517
Foxit PDF SDK For Web up to and including 7.5.0 allows XSS. There is arbitrary JavaScript code execution in the browser if a victim uploads a malicious PDF document containing embedded JavaScript code that abuses app.alert (in the Acrobat JavaScript API).
Foxit Phantompdf
Foxit Reader
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »