CVE-2021-41784: Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code…

high7.8CVSS 3.1

AVLACLPRNUIRSUCHIHAH

Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.

Affected

3 ranges

Vendor	Product	Version range	Fixed in
foxit	pdf_editor	>= 11.0 < 11.1	11.1
foxit	pdf_reader	>= 11.0 < 11.1	11.1
foxit	phantompdf	< 10.1.6	10.1.6