Foxit Pdf Editor vulnerabilities
257 known vulnerabilities affecting foxit/pdf_editor.
Total CVEs
257
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH193MEDIUM31LOW30
Vulnerabilities
Page 5 of 13
CVE-2023-27363HIGHCVSS 7.8fixed in 10.1.11.37866≥ 11.0.0.49893, < 11.2.5.53785+1 more2024-05-03
CVE-2023-27363 [HIGH] CWE-749 CVE-2023-27363: Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vu
Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specifi
nvd
CVE-2023-51560HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+4 more2024-05-03
CVE-2023-51560 [HIGH] CWE-843 CVE-2023-51560: Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-38107HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.6.53790+3 more2024-05-03
CVE-2023-38107 [HIGH] CWE-416 CVE-2023-38107: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-27331HIGHCVSS 7.8fixed in 10.1.10.37854≥ 11.0.0.49893, < 11.2.4.53774+1 more2024-05-03
CVE-2023-27331 [HIGH] CWE-416 CVE-2023-27331: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-27365HIGHCVSS 7.8fixed in 10.1.11.37866≥ 11.0.0.49893, < 11.2.5.53785+2 more2024-05-03
CVE-2023-27365 [HIGH] CWE-749 CVE-2023-27365: Foxit PDF Editor DOC File Parsing Exposed Dangerous Method Remote Code Execution Vulnerability. This
Foxit PDF Editor DOC File Parsing Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The spec
cvelistv5nvd
CVE-2023-27364HIGHCVSS 7.8fixed in 10.1.11.37866≥ 11.0.0.49893, < 11.2.5.53785+2 more2024-05-03
CVE-2023-27364 [HIGH] CWE-749 CVE-2023-27364: Foxit PDF Editor XLS File Parsing Exposed Dangerous Method Remote Code Execution Vulnerability. This
Foxit PDF Editor XLS File Parsing Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The spec
cvelistv5nvd
CVE-2023-51552HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+4 more2024-05-03
CVE-2023-51552 [HIGH] CWE-416 CVE-2023-51552: Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnera
Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2023-42089HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+2 more2024-05-03
CVE-2023-42089 [HIGH] CWE-416 CVE-2023-42089: Foxit PDF Reader templates Use-After-Free Information Disclosure Vulnerability. This vulnerability a
Foxit PDF Reader templates Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2023-38117HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.6.53790+3 more2024-05-03
CVE-2023-38117 [HIGH] CWE-416 CVE-2023-38117: Foxit PDF Reader AcroForm Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulner
Foxit PDF Reader AcroForm Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2023-42092HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+2 more2024-05-03
CVE-2023-42092 [HIGH] CWE-416 CVE-2023-42092: Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-27329HIGHCVSS 7.8fixed in 10.1.10.37854≥ 11.0.0.49893, < 11.2.4.53774+1 more2024-05-03
CVE-2023-27329 [HIGH] CWE-416 CVE-2023-27329: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-51556HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+4 more2024-05-03
CVE-2023-51556 [HIGH] CWE-416 CVE-2023-51556: Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability. This vulnerability
Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exis
nvd
CVE-2023-42091HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+2 more2024-05-03
CVE-2023-42091 [HIGH] CWE-416 CVE-2023-42091: Foxit PDF Reader XFA Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerabili
Foxit PDF Reader XFA Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw ex
nvd
CVE-2023-51557HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+4 more2024-05-03
CVE-2023-51557 [HIGH] CWE-416 CVE-2023-51557: Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability. This vulnerability
Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exis
nvd
CVE-2023-51549HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0.49893, ≤ 11.2.7.53812+4 more2024-05-03
CVE-2023-51549 [HIGH] CWE-416 CVE-2023-51549: Foxit PDF Reader AcroForm Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulner
Foxit PDF Reader AcroForm Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2023-38111HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.6.53790+3 more2024-05-03
CVE-2023-38111 [HIGH] CWE-416 CVE-2023-38111: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-38119HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.6.53790+1 more2024-05-03
CVE-2023-38119 [HIGH] CWE-125 CVE-2023-38119: Foxit PDF Reader AcroForm signature Out-Of-Bounds Read Remote Code Execution Vulnerability. This vul
Foxit PDF Reader AcroForm signature Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific
nvd
CVE-2023-42090HIGHCVSS 7.1≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+2 more2024-05-03
CVE-2023-42090 [HIGH] CWE-125 CVE-2023-42090: Foxit PDF Reader XFA Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulner
Foxit PDF Reader XFA Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The spe
nvd
CVE-2023-51551HIGHCVSS 7.8≤ 10.1.12.37872≥ 11.0.0, ≤ 11.2.7.53812+9 more2024-05-03
CVE-2023-51551 [HIGH] CWE-416 CVE-2023-51551: Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnera
Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2023-27330HIGHCVSS 7.8fixed in 10.1.10.37854≥ 11.0.0.49893, < 11.2.4.53774+1 more2024-05-03
CVE-2023-27330 [HIGH] CWE-416 CVE-2023-27330: Foxit PDF Reader XFA Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerabili
Foxit PDF Reader XFA Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw ex
nvd