cbcvebase.
CVE-2015-2789
published 2015-03-30

CVE-2015-2789: Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users…

PriorityP426medium4.4CVSS 2.0
AVLACMAuNCPIPAP
EXPLOIT
EPSS
3.19%
86.5th percentile
Unquoted Windows search path vulnerability in the Foxit Cloud Safe Update Service in the Cloud plugin in Foxit Reader 6.1 through 7.0.6.1126 allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.

Affected

7 ranges
VendorProductVersion rangeFixed in
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
foxitsoftwarefoxit_reader
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.