Foxit Pdf Editor vulnerabilities
256 known vulnerabilities affecting foxit/pdf_editor.
Total CVEs
256
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH192MEDIUM31LOW30
Vulnerabilities
Page 2 of 13
CVE-2025-9329HIGHCVSS 7.8≤ 13.1.7.23637≥ 2023.1.0.15510, ≤ 2023.3.0.23028+6 more2025-09-02
CVE-2025-9329 [HIGH] CWE-125 CVE-2025-9329: Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulne
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2025-9328HIGHCVSS 7.8≤ 13.1.7.23637≥ 2023.1.0.15510, ≤ 2023.3.0.23028+6 more2025-09-02
CVE-2025-9328 [HIGH] CWE-125 CVE-2025-9328: Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulne
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2025-9323MEDIUMCVSS 5.5≤ 13.1.7.23637≥ 2023.1.0.15510, ≤ 2023.3.0.23028+2 more2025-09-02
CVE-2025-9323 [MEDIUM] CWE-125 CVE-2025-9323: Foxit PDF Reader JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vuln
Foxit PDF Reader JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The s
nvd
CVE-2025-9325MEDIUMCVSS 5.5≤ 13.1.7.23637≥ 2023.1.0.15510, ≤ 2023.3.0.23028+6 more2025-09-02
CVE-2025-9325 [MEDIUM] CWE-125 CVE-2025-9325: Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vuln
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The s
nvd
CVE-2025-9327MEDIUMCVSS 5.5≤ 13.1.7.23637≥ 2023.1.0.15510, ≤ 2023.3.0.23028+2 more2025-09-02
CVE-2025-9327 [MEDIUM] CWE-125 CVE-2025-9327: Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vuln
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The s
nvd
CVE-2025-9324MEDIUMCVSS 5.5≤ 13.1.7.23637≥ 2023.1.0.15510, ≤ 2023.3.0.23028+6 more2025-09-02
CVE-2025-9324 [MEDIUM] CWE-125 CVE-2025-9324: Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vuln
Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The s
nvd
CVE-2024-12751HIGHCVSS 7.8≥ 11.0.0, ≤ 11.2.11.54113≥ 12.0.0, ≤ 12.1.8.15703+3 more2024-12-30
CVE-2024-12751 [HIGH] CWE-125 CVE-2024-12751: Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability
Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exis
nvd
CVE-2024-12752HIGHCVSS 7.8≥ 11.0.0, ≤ 11.2.11.54113≥ 12.0.0, ≤ 12.1.8.15703+3 more2024-12-30
CVE-2024-12752 [HIGH] CWE-119 CVE-2024-12752: Foxit PDF Reader AcroForm Memory Corruption Remote Code Execution Vulnerability. This vulnerability
Foxit PDF Reader AcroForm Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2024-12753HIGHCVSS 7.3≥ 11.0.0, ≤ 11.2.11.54113≥ 12.0.0, ≤ 12.1.8.15703+3 more2024-12-30
CVE-2024-12753 [HIGH] CWE-59 CVE-2024-12753: Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability. This vulnerability allows
Foxit PDF Reader Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists within th
nvd
CVE-2024-47810HIGHCVSS 8.8≤ 11.2.11.54113≥ 12.0.0, ≤ 12.1.8.15703+3 more2024-12-18
CVE-2024-47810 [HIGH] CWE-416 CVE-2024-47810: A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a 3D page objec
A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a 3D page object. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the malicious file to tri
nvd
CVE-2024-49576HIGHCVSS 8.8≤ 11.2.11.54113≥ 12.0.0, ≤ 12.1.8.15703+3 more2024-12-18
CVE-2024-49576 [HIGH] CWE-416 CVE-2024-49576: A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a checkbox CBF_
A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a checkbox CBF_Widget object. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the malicious
nvd
CVE-2024-9255HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9255 [HIGH] CWE-416 CVE-2024-9255: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists w
nvd
CVE-2024-9244HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9244 [HIGH] CWE-732 CVE-2024-9244: Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerabi
Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Th
nvd
CVE-2024-9250HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9250 [HIGH] CWE-416 CVE-2024-9250: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability all
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists wit
nvd
CVE-2024-9254HIGHCVSS 8.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+8 more2024-11-22
CVE-2024-9254 [HIGH] CWE-416 CVE-2024-9254: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists w
nvd
CVE-2024-9249HIGHCVSS 7.1≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9249 [HIGH] CWE-125 CVE-2024-9249: Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulne
Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2024-9243HIGHCVSS 7.8≤ 11.1.9.0524≥ 12.0, ≤ 12.1.5.55449+8 more2024-11-22
CVE-2024-9243 [HIGH] CWE-416 CVE-2024-9243: Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability. This vulnerability
Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2024-9247HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9247 [HIGH] CWE-787 CVE-2024-9247: Foxit PDF Reader Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerabil
Foxit PDF Reader Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exi
nvd
CVE-2024-9245HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9245 [HIGH] CWE-732 CVE-2024-9245: Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerabi
Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
Th
nvd
CVE-2024-9246HIGHCVSS 7.1≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9246 [HIGH] CWE-125 CVE-2024-9246: Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabil
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific
nvd