Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
foxitsoftware vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2018-11621
This vulnerability allows remote malicious users to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The speci...
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
5.5
CVSSv3
CVE-2019-5005
An issue exists in Foxit Reader and PhantomPDF prior to 9.4 on Windows. They allowed Denial of Service (application crash) via image data, because two bytes are written to the end of the allocated memory without judging whether this will cause corruption.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
7.1
CVSSv3
CVE-2019-5007
An issue exists in Foxit Reader and PhantomPDF prior to 9.4 on Windows. It is an Out-of-Bounds Read Information Disclosure and crash due to a NULL pointer dereference when reading TIFF data during TIFF parsing.
Foxitsoftware Foxit Reader
Foxitsoftware Phantompdf
8.8
CVSSv3
CVE-2019-5031
An exploitable memory corruption vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader, version 9.4.1.16828. A specially crafted PDF document can trigger an out-of-memory condition which isn't handled properly, resulting in arbitrary code ex...
Foxitsoftware Phantompdf
Foxitsoftware Reader
8.1
CVSSv3
CVE-2020-11493
In Foxit Reader and PhantomPDF prior to 10.0.1, and PhantomPDF prior to 9.7.3, attackers can obtain sensitive information about an uninitialized object because of direct transformation from PDF Object to Stream without concern for a crafted XObject.
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.8
CVSSv3
CVE-2020-8846
This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exi...
Foxitsoftware Reader
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2020-8847
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw ...
Foxitsoftware Reader
Foxitsoftware Phantompdf
7.8
CVSSv3
CVE-2020-8848
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit Reader 9.7.0.29455. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw ...
Foxitsoftware Reader
Foxitsoftware Phantompdf
8.8
CVSSv3
CVE-2018-3943
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker n...
Foxitsoftware Phantompdf
Foxitsoftware Reader
7.8
CVSSv3
CVE-2018-3967
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attac...
Foxitsoftware Phantompdf
Foxitsoftware Reader
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »