Latest Foxitsoftware Vulnerabilities

CVE-2023-39542
A code execution vulnerability exists in the Javascript saveAs API of Foxit Reader 12.1.3.15356. A specially crafted malformed file can create arbitrary files, which can lead to remote code execution....
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-40194
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit Reader 12.1.3.15356 due to mistreatment of whitespace characters. A specially crafted malicious file can...
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-35985
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit Reader 12.1.3.15356 due to a failure to properly validate a dangerous extension. A specially crafted mal...
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-41257
A type confusion vulnerability exists in the way Foxit Reader 12.1.2.15356 handles field value properties. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnera...
Foxitsoftware Foxit Reader=12.1.3.15356
CVE-2023-32616
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15356 handles 3D annotations. A specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previously...
Foxitsoftware Foxit Reader=12.1.2.15356
CVE-2023-38573
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15356 handles a signature field. A specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previou...
Foxitsoftware Foxit Reader=12.1.2.15356
CVE-2022-43310
An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path...
Foxitsoftware Foxit Reader<11.2.118.51569
CVE-2021-38574
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows SQL Injection via crafted data at the end of a string.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38570
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows attackers to delete arbitrary files (during uninstallation) via a symlink.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38569
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows stack consumption via recursive function calls during the handling of XFA forms or link objects.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38565
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows writing to arbitrary files via submitForm.
Foxitsoftware Pdf Editor<11.0.1
Foxitsoftware Pdf Reader<11.0.1
CVE-2021-38568
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows memory corruption during conversion of a PDF document to a different document format.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38571
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows DLL hijacking, aka CNVD-C-2021-68000 and CNVD-C-2021-68502.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<10.1.4
Microsoft Windows
CVE-2021-38573
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38567
An issue was discovered in Foxit PDF Editor before 11.0.1 and PDF Reader before 11.0.1 on macOS. It mishandles missing dictionary entries, leading to a NULL pointer dereference, aka CNVD-C-2021-95204.
Foxit PDF Reader<=11.0.0.0510
Foxitsoftware Pdf Editor<=11.0.0.0510
CVE-2021-38563
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It mishandles situations in which an array size (derived from a /Size entry) is smaller than the maximum indirec...
Foxit PDF Reader<=11.0.0.0510
Foxitsoftware Pdf Editor<=11.0.0.0510
CVE-2021-38572
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because the extractPages pathname is not validated.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-38564
An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. It allows an out-of-bounds read via util.scand.
Foxitsoftware Pdf Editor<11.0.1
Foxitsoftware Pdf Reader<11.0.1
CVE-2021-33793
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33794
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-34850
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34853
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34849
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34852
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34851
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34848
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34845
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34840
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
Foxit PDF Reader
CVE-2021-34847
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34846
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34843
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34839
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34838
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34842
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34844
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
Foxit PDF Reader
CVE-2021-34833
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34831
Foxit Reader embedDocAsDataObject Use-After-Free Remote Code Execution Vulnerability
Foxit Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34837
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34836
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-34835
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability
Foxit PDF Reader
Foxit PDF Reader<=11.0.0.49893
Foxitsoftware Pdf Editor<=10.1.4.37651
Foxitsoftware Pdf Editor=11.0.0.49893
Microsoft Windows
CVE-2021-33795
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 produce incorrect PDF document signatures because the certificate name, document owner, and signature author are mishandled.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-33792
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write via a crafted /Size key in the Trailer dictionary.
Foxitsoftware Foxit Reader<10.1.4
Foxitsoftware Phantompdf<10.1.4
CVE-2021-31476
Foxit PhantomPDF XFA Template Type Confusion Remote Code Execution Vulnerability
Foxit PhantomPDF
Foxitsoftware Foxit Reader<=10.1.3.37598
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Microsoft Windows
CVE-2021-31473
Foxit Reader browseForDoc Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.3.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-21822
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously free memory, w...
Foxitsoftware Foxit Reader=10.1.3.37598
CVE-2021-31472
Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d>=10.0<=10.0.1.37598
Foxitsoftware 3d>=10.0<=10.0.1.37598
Microsoft Windows
Foxit Reader
CVE-2021-31465
Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d>=10.0.0.0<=10.1.3.37598
Foxitsoftware 3d>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31462
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d>=10.0.0.0<=10.1.3.37598
Foxitsoftware 3d>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31464
Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d<=9.7.4.29600
Foxitsoftware 3d>=10.0.0.0<=10.1.3.37598
Foxitsoftware 3d>=10.0.0.0<=10.1.3.37598
Microsoft Windows
Foxit Reader
CVE-2021-31460
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the targ...
Foxitsoftware Phantompdf<=9.7.5.29616
Foxitsoftware Phantompdf>=10.0.0.0<=10.1.37598
Foxitsoftware Reader<=10.1.3.37598
Microsoft Windows

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203