Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-37377

Published: 29/03/2023 Updated: 06/04/2023
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 0
Subscribe to Pdf Editor

Vulnerability Summary

This vulnerability allows remote malicious users to execute arbitrary code on affected installations of Foxit PDF Editor 11.1.1.53537;. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JavaScript optimizations. The issue results from an improper optimization, which can result in a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-16733.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

foxit pdf_editor

foxit pdf_editor 12.0.0.12394

foxit pdf_reader

References

CWE-843https://www.zerodayinitiative.com/advisories/ZDI-22-1049/https://www.foxit.com/support/security-bulletins.htmlhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTICVE-2024-35863CVE-2024-35910man-in-the-middleCVE-2024-35912CVE-2024-25742LFICVE-2024-32002CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook