Foxit Pdf Editor vulnerabilities
257 known vulnerabilities affecting foxit/pdf_editor.
Total CVEs
257
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH193MEDIUM31LOW30
Vulnerabilities
Page 3 of 13
CVE-2024-9246HIGHCVSS 7.1≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9246 [HIGH] CWE-125 CVE-2024-9246: Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabil
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific
nvd
CVE-2024-9251HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9251 [HIGH] CWE-416 CVE-2024-9251: Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
nvd
CVE-2024-9252HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9252 [HIGH] CWE-416 CVE-2024-9252: Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulnerability. This vulnerability al
Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw e
nvd
CVE-2024-9248HIGHCVSS 7.8≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9248 [HIGH] CWE-787 CVE-2024-9248: Foxit PDF Reader PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vuln
Foxit PDF Reader PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2024-9253HIGHCVSS 7.1≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9253 [HIGH] CWE-125 CVE-2024-9253: Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabilit
Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2024-9256HIGHCVSS 7.1≤ 11.2.10.53951≥ 12.0, ≤ 12.1.7.15526+3 more2024-11-22
CVE-2024-9256 [HIGH] CWE-125 CVE-2024-9256: Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabilit
Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2024-7725HIGHCVSS 8.8fixed in 11.2.11.54113≥ 12.0.0.12394, < 12.1.8.15703+2 more2024-08-21
CVE-2024-7725 [HIGH] CWE-416 CVE-2024-7725: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability all
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists wit
nvd
CVE-2024-7724HIGHCVSS 8.8fixed in 11.2.11.54113≥ 12.0.0.12394, < 12.1.8.15703+2 more2024-08-21
CVE-2024-7724 [HIGH] CWE-416 CVE-2024-7724: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability all
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists wit
nvd
CVE-2024-7723HIGHCVSS 8.8fixed in 11.2.11.54113≥ 12.0.0.12394, < 12.1.8.15703+2 more2024-08-21
CVE-2024-7723 [HIGH] CWE-416 CVE-2024-7723: Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability all
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists wit
nvd
CVE-2024-7722MEDIUMCVSS 4.3fixed in 11.2.11.54113≥ 12.0.0.12394, < 12.1.8.15703+2 more2024-08-21
CVE-2024-7722 [MEDIUM] CWE-416 CVE-2024-7722: Foxit PDF Reader Doc Object Use-After-Free Information Disclosure Vulnerability. This vulnerability
Foxit PDF Reader Doc Object Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2024-29072HIGHCVSS 8.2≤ 11.2.9.53938≥ 12.0.0, ≤ 12.1.6.15509+3 more2024-05-28
CVE-2024-29072 [HIGH] CWE-295 CVE-2024-29072: A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability oc
A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validation of the updater executable before executing it. A low privilege user can trigger the update action which can result in unexpected elevation of privilege.
nvd
CVE-2021-34962HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34962 [HIGH] CWE-416 CVE-2021-34962: Foxit PDF Editor Caret Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerabi
Foxit PDF Editor Caret Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
cvelistv5nvd
CVE-2021-34958HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34958 [HIGH] CWE-416 CVE-2021-34958: Foxit PDF Editor Text Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerabil
Foxit PDF Editor Text Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw e
cvelistv5nvd
CVE-2021-34963HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34963 [HIGH] CWE-416 CVE-2021-34963: Foxit PDF Editor PolyLine Annotation Use-After-Free Remote Code Execution Vulnerability. This vulner
Foxit PDF Editor PolyLine Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
cvelistv5nvd
CVE-2021-34953HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34953 [HIGH] CWE-457 CVE-2021-34953: Foxit PDF Reader Annotation Use of Uninitialized Variable Remote Code Execution Vulnerability. This
Foxit PDF Reader Annotation Use of Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specif
nvd
CVE-2021-34960HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34960 [HIGH] CWE-416 CVE-2021-34960: Foxit PDF Editor Circle Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerab
Foxit PDF Editor Circle Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
cvelistv5nvd
CVE-2021-34959HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34959 [HIGH] CWE-416 CVE-2021-34959: Foxit PDF Editor Square Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerab
Foxit PDF Editor Square Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
cvelistv5nvd
CVE-2021-34950HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34950 [HIGH] CWE-125 CVE-2021-34950: Foxit PDF Reader Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerabili
Foxit PDF Reader Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw ex
nvd
CVE-2021-34955HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34955 [HIGH] CWE-416 CVE-2021-34955: Foxit PDF Editor Stamp Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerabi
Foxit PDF Editor Stamp Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
cvelistv5nvd
CVE-2021-34957HIGHCVSS 7.8≤ 10.1.5.37672v11.0.0.49893+1 more2024-05-07
CVE-2021-34957 [HIGH] CWE-416 CVE-2021-34957: Foxit PDF Editor Highlight Annotation Use-After-Free Remote Code Execution Vulnerability. This vulne
Foxit PDF Editor Highlight Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific f
cvelistv5nvd