Foxit Pdf Reader vulnerabilities
310 known vulnerabilities affecting foxit/pdf_reader.
Total CVEs
310
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH239MEDIUM38LOW30
Vulnerabilities
Page 7 of 16
CVE-2023-38106LOWCVSS 3.3≤ 12.1.2.15332v12.1.2.153322024-05-03
CVE-2023-38106 [LOW] CWE-125 CVE-2023-38106: Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vuln
Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The sp
nvd
CVE-2023-51550LOWCVSS 3.3≤ 2023.2.0.21408v12.1.3.153562024-05-03
CVE-2023-51550 [LOW] CWE-125 CVE-2023-51550: Foxit PDF Reader combobox Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabilit
Foxit PDF Reader combobox Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific f
nvd
CVE-2023-38109LOWCVSS 3.3≤ 12.1.2.15332fixed in 12.1.0.1229+1 more2024-05-03
CVE-2023-38109 [LOW] CWE-125 CVE-2023-38109: Foxit PDF Reader Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabil
Foxit PDF Reader Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific
nvd
CVE-2023-38115LOWCVSS 3.3≤ 12.1.2.15332v12.1.2.153322024-05-03
CVE-2023-38115 [LOW] CWE-125 CVE-2023-38115: Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabilit
Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific f
nvd
CVE-2023-51562LOWCVSS 3.3≤ 2023.2.0.21408v2023.2.0.214082024-05-03
CVE-2023-51562 [LOW] CWE-125 CVE-2023-51562: Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabilit
Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific f
nvd
CVE-2023-38113LOWCVSS 3.3≤ 12.1.2.15332fixed in 12.1.0.1229+1 more2024-05-03
CVE-2023-38113 [LOW] CWE-416 CVE-2023-38113: Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
nvd
CVE-2023-51553LOWCVSS 3.3≤ 2023.2.0.21408≤ 2023.2.0.61611+1 more2024-05-03
CVE-2023-51553 [LOW] CWE-125 CVE-2023-51553: Foxit PDF Reader Bookmark Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabilit
Foxit PDF Reader Bookmark Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific f
nvd
CVE-2023-38108LOWCVSS 3.3≤ 12.1.2.15332v12.1.2.153322024-05-03
CVE-2023-38108 [LOW] CWE-125 CVE-2023-38108: Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vuln
Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The sp
nvd
CVE-2023-51555LOWCVSS 3.3≤ 2023.2.0.21408≤ 2023.2.0.61611+1 more2024-05-03
CVE-2023-51555 [LOW] CWE-125 CVE-2023-51555: Foxit PDF Reader Doc Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability all
Foxit PDF Reader Doc Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw e
nvd
CVE-2023-38116LOWCVSS 3.3≤ 12.1.2.15332v12.1.2.153322024-05-03
CVE-2023-38116 [LOW] CWE-125 CVE-2023-38116: Foxit PDF Reader Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerabil
Foxit PDF Reader Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific
nvd
CVE-2023-42093LOWCVSS 3.3≤ 12.1.3.15356v12.1.3.153562024-05-03
CVE-2023-42093 [LOW] CWE-416 CVE-2023-42093: Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
nvd
CVE-2023-38105LOWCVSS 3.3≤ 12.1.2.15332v12.1.2.153322024-05-03
CVE-2023-38105 [LOW] CWE-125 CVE-2023-38105: Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vuln
Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The sp
nvd
CVE-2023-51559LOWCVSS 3.3≤ 2023.2.0.21408≤ 2023.2.0.61611+1 more2024-05-03
CVE-2023-51559 [LOW] CWE-125 CVE-2023-51559: Foxit PDF Reader Doc Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allo
Foxit PDF Reader Doc Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists wit
nvd
CVE-2023-51554LOWCVSS 3.3≤ 2023.2.0.21408≤ 2023.2.0.61611+1 more2024-05-03
CVE-2023-51554 [LOW] CWE-416 CVE-2023-51554: Foxit PDF Reader Signature Use-After-Free Information Disclosure Vulnerability. This vulnerability a
Foxit PDF Reader Signature Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
nvd
CVE-2023-38110LOWCVSS 3.3≤ 12.1.2.15332fixed in 12.1.0.1229+1 more2024-05-03
CVE-2023-38110 [LOW] CWE-125 CVE-2023-38110: Foxit PDF Reader AcroForm Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This v
Foxit PDF Reader AcroForm Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The
nvd
CVE-2023-51558LOWCVSS 3.3≤ 2023.2.0.21408v2023.2.0.214082024-05-03
CVE-2023-51558 [LOW] CWE-125 CVE-2023-51558: Foxit PDF Reader AcroForm Doc Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerab
Foxit PDF Reader AcroForm Doc Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specif
nvd
CVE-2023-42098LOWCVSS 3.3≤ 12.1.3.15356v12.1.3.153562024-05-03
CVE-2023-42098 [LOW] CWE-416 CVE-2023-42098: Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw
nvd
CVE-2024-25648HIGHCVSS 8.8v2024.1.0.23997v2024.1.0.636822024-04-30
CVE-2024-25648 [HIGH] CWE-416 CVE-2024-25648: A use-after-free vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a ComboBox widg
A use-after-free vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a ComboBox widget. A specially crafted JavaScript code inside a malicious PDF document can trigger reuse of a previously freed object, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the mali
nvd
CVE-2024-25938HIGHCVSS 8.8v2024.1.0.239972024-04-30
CVE-2024-25938 [HIGH] CWE-416 CVE-2024-25938: A use-after-free vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a Barcode widge
A use-after-free vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a Barcode widget. A specially crafted JavaScript code inside a malicious PDF document can trigger reuse of a previously freed object, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the malic
nvd
CVE-2024-25575HIGHCVSS 8.8v2024.1.0.239972024-04-30
CVE-2024-25575 [HIGH] CWE-843 CVE-2024-25575: A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a
A type confusion vulnerability vulnerability exists in the way Foxit Reader 2024.1.0.23997 handles a Lock object. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the malicious
nvd