Latest foxitsoftware foxit reader Vulnerabilities

CVE-2023-39542
A code execution vulnerability exists in the Javascript saveAs API of Foxit Reader 12.1.3.15356. A specially crafted malformed file can create arbitrary files, which can lead to remote code execution....
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-35985
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit Reader 12.1.3.15356 due to a failure to properly validate a dangerous extension. A specially crafted mal...
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-40194
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit Reader 12.1.3.15356 due to mistreatment of whitespace characters. A specially crafted malicious file can...
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-32616
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15356 handles 3D annotations. A specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previously...
Foxitsoftware Foxit Reader=12.1.2.15356
CVE-2023-41257
A type confusion vulnerability exists in the way Foxit Reader 12.1.2.15356 handles field value properties. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnera...
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-38573
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15356 handles a signature field. A specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previou...
Foxitsoftware Foxit Reader=12.1.2.15356
CVE-2022-43310
An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path...
Foxitsoftware Foxit Reader<11.2.118.51569
CVE-2021-38574
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows SQL Injection via crafted data at the end of a string.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38572
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38568
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows memory corruption during conversion of a PDF document to a different document format.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38571
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows DLL hijacking, aka CNVD-C-2021-68000 and CNVD-C-2021-68502.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<10.1.4
Microsoft Windows
CVE-2021-38573
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38570
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows attackers to delete arbitrary files (during uninstallation) via a symlink.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38569
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33793
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33794
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33792
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write via a crafted /Size key in the Trailer dictionary.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33795
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 produce incorrect PDF document signatures because the certificate name, document owner, and signature author are mishandled.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-31476
Foxit PhantomPDF XFA Template Type Confusion Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-21822
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously free memory, w...
Foxitsoftware Foxit Reader=10.1.3.37598
CVE-2021-31454
Foxit Reader XFA leadDigits Heap-based Buffer Overflow Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31442
Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31452
Foxit Reader XFA Form Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31443
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31455
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31453
Foxit Reader XFA relayout Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31444
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31441
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31446
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that ...
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31445
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31449
Foxit Reader U3D File Parsing Double Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31451
Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31448
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31450
Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31447
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-27266
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27267
Foxit PhantomPDF U3D File Parsing Use-After-Free Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27271
Foxit PhantomPDF U3DBrowser Out-Of-Bounds Read Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27270
Foxit PhantomPDF JPEG2000 Parsing Out-Of Bounds Read Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27269
Foxit PhantomPDF U3DBrowser U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27268
Foxit PhantomPDF U3D File Parsing Use-After-Free Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27264
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27265
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27262
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27261
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2021-27263
Foxit PhantomPDF U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=10.1.0.37527
Microsoft Windows
CVE-2020-27860
Foxit Reader XFA Template Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Foxit Reader<=10.1.0.37527
Foxitsoftware Phantompdf<=9.7.4.29600
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.0.37527
Microsoft Windows
Foxit Reader
CVE-2020-13548
In Foxit Reader 10.1.0.37527, a specially crafted PDF document can trigger reuse of previously free memory which can lead to arbitrary code execution. An attacker needs to trick the user to open the m...
Foxitsoftware Foxit Reader=10.1.0.37527
CVE-2018-18688
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, an Incremental Saving vulnerability exis...
Code-industry Master Pdf Editor=5.1.12
Code-industry Master Pdf Editor=5.1.68
Foxitsoftware Foxit Reader=9.4
Foxitsoftware Phantompdf>=9.0<9.4
Foxitsoftware Phantompdf=8.3.9
Gonitro Nitro Pro=11.0.3.173
and 26 more
CVE-2018-18689
The Portable Document Format (PDF) specification does not provide any information regarding the concrete procedure of how to validate signatures. Consequently, a Signature Wrapping vulnerability exist...
Avanquest Expert Pdf Ultimate=12.0.20
Avanquest Pdf Experte Ultimate=9.0.270
Foxitsoftware Foxit Reader=9.1.0
Foxitsoftware Foxit Reader=9.2.0.9297
Foxitsoftware Foxit Reader=9.3.0.10826
Gonitro Nitro Pro=11.0.3.173
and 27 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203