Foxit Pdf Reader vulnerabilities
310 known vulnerabilities affecting foxit/pdf_reader.
Total CVEs
310
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH239MEDIUM38LOW30
Vulnerabilities
Page 5 of 16
CVE-2021-34954HIGHCVSS 7.8≤ 11.0.1.499382024-05-07
CVE-2021-34954 [HIGH] CWE-416 CVE-2021-34954: Foxit PDF Editor StrikeOut Annotation Use-After-Free Remote Code Execution Vulnerability. This vulne
Foxit PDF Editor StrikeOut Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific f
nvd
CVE-2021-34965HIGHCVSS 7.8≤ 11.0.1.499382024-05-07
CVE-2021-34965 [HIGH] CWE-416 CVE-2021-34965: Foxit PDF Editor Squiggly Annotation Use-After-Free Remote Code Execution Vulnerability. This vulner
Foxit PDF Editor Squiggly Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2021-34961HIGHCVSS 7.8≤ 11.0.1.499382024-05-07
CVE-2021-34961 [HIGH] CWE-416 CVE-2021-34961: Foxit PDF Editor Ink Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerabili
Foxit PDF Editor Ink Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw ex
nvd
CVE-2021-34964HIGHCVSS 7.8≤ 11.0.1.499382024-05-07
CVE-2021-34964 [HIGH] CWE-416 CVE-2021-34964: Foxit PDF Editor Polygon Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnera
Foxit PDF Editor Polygon Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2021-34949MEDIUMCVSS 5.5≤ 11.0.1.49938v11.0.0.498932024-05-07
CVE-2021-34949 [MEDIUM] CWE-125 CVE-2021-34949: Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabil
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The speci
nvd
CVE-2021-34973MEDIUMCVSS 5.5≤ 11.0.1.49938v11.0.1.499382024-05-07
CVE-2021-34973 [MEDIUM] CWE-416 CVE-2021-34973: Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerab
Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The spe
nvd
CVE-2021-34970MEDIUMCVSS 5.5≤ 11.0.1.49938v11.0.1.499382024-05-07
CVE-2021-34970 [MEDIUM] CWE-134 CVE-2021-34970: Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure Vuln
Foxit PDF Reader print Method Use of Externally-Controlled Format String Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a
nvd
CVE-2021-34976MEDIUMCVSS 5.5≤ 11.0.1.49938v11.0.1.499382024-05-07
CVE-2021-34976 [MEDIUM] CWE-416 CVE-2021-34976: Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerab
Foxit PDF Reader PDF File Parsing Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The spe
nvd
CVE-2021-34969MEDIUMCVSS 5.5≤ 11.0.1.49938v11.0.1.499382024-05-07
CVE-2021-34969 [MEDIUM] CWE-416 CVE-2021-34969: Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific f
nvd
CVE-2021-34972MEDIUMCVSS 5.5≤ 11.0.1.49938v13.2.0.211652024-05-07
CVE-2021-34972 [MEDIUM] CWE-416 CVE-2021-34972: Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulnerability. This vulnerability al
Foxit PDF Reader AcroForm Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2021-34951LOWCVSS 3.3≤ 11.0.1.49938v11.0.0.498932024-05-07
CVE-2021-34951 [LOW] CWE-457 CVE-2021-34951: Foxit PDF Reader Annotation Use of Uninitialized Variable Information Disclosure Vulnerability. This
Foxit PDF Reader Annotation Use of Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
T
nvd
CVE-2023-27363HIGHCVSS 7.8fixed in 12.1.1.15289v12.1.0.152502024-05-03
CVE-2023-27363 [HIGH] CWE-749 CVE-2023-27363: Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vu
Foxit PDF Reader exportXFAData Exposed Dangerous Method Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specifi
nvd
CVE-2023-51560HIGHCVSS 7.8≤ 2023.2.0.21408v2023.2.0.214082024-05-03
CVE-2023-51560 [HIGH] CWE-843 CVE-2023-51560: Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-38107HIGHCVSS 7.8≤ 12.1.2.15332fixed in 12.1.0.1229+1 more2024-05-03
CVE-2023-38107 [HIGH] CWE-416 CVE-2023-38107: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-27331HIGHCVSS 7.8fixed in 12.1.0.15250v12.0.2.124652024-05-03
CVE-2023-27331 [HIGH] CWE-416 CVE-2023-27331: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-51552HIGHCVSS 7.8≤ 2023.2.0.21408v12.1.3.153562024-05-03
CVE-2023-51552 [HIGH] CWE-416 CVE-2023-51552: Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnera
Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2023-42089HIGHCVSS 7.8≤ 12.1.3.15356v12.1.2.153322024-05-03
CVE-2023-42089 [HIGH] CWE-416 CVE-2023-42089: Foxit PDF Reader templates Use-After-Free Information Disclosure Vulnerability. This vulnerability a
Foxit PDF Reader templates Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fla
nvd
CVE-2023-38117HIGHCVSS 7.8≤ 12.1.2.15332fixed in 12.1.0.1229+1 more2024-05-03
CVE-2023-38117 [HIGH] CWE-416 CVE-2023-38117: Foxit PDF Reader AcroForm Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulner
Foxit PDF Reader AcroForm Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific fl
nvd
CVE-2023-42092HIGHCVSS 7.8≤ 12.1.3.15356v12.1.2.153322024-05-03
CVE-2023-42092 [HIGH] CWE-416 CVE-2023-42092: Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd
CVE-2023-27329HIGHCVSS 7.8fixed in 12.1.0.15250v12.0.2.124652024-05-03
CVE-2023-27329 [HIGH] CWE-416 CVE-2023-27329: Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability a
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists
nvd