Vulnerabilities > Foxit

DATE CVE VULNERABILITY TITLE RISK
2023-08-11 CVE-2020-35990 Classic Buffer Overflow vulnerability in Foxit PDF Reader 8.3.2.25013/9.0.1.1049
Buffer Overflow vulnerability in cFilenameInit parameter in browseForDoc function in Foxit Software Foxit PDF Reader version 10.1.0.37527, allows local attackers to cause a denial of service (DoS) via crafted .pdf file.
local
low complexity
foxit CWE-120
5.5
2023-07-19 CVE-2023-27379 Use After Free vulnerability in Foxit PDF Reader 12.1.2.15332
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 12.1.2.15332.
network
low complexity
foxit CWE-416
8.8
2023-07-19 CVE-2023-28744 Use After Free vulnerability in Foxit PDF Reader 12.1.1.15289
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.1.1.15289.
network
low complexity
foxit CWE-416
8.8
2023-07-19 CVE-2023-32664 Unspecified vulnerability in Foxit PDF Reader 12.1.2.15332
A type confusion vulnerability exists in the Javascript checkThisBox method as implemented in Foxit Reader 12.1.2.15332.
local
low complexity
foxit
7.8
2023-07-19 CVE-2023-33866 Use After Free vulnerability in Foxit PDF Reader 12.1.2.15332
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 12.1.2.15332.
network
low complexity
foxit CWE-416
8.8
2023-07-19 CVE-2023-33876 Unspecified vulnerability in Foxit PDF Reader 12.1.2.15332
A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15332 handles destroying annotations.
network
low complexity
foxit
8.8
2023-05-19 CVE-2023-33240 Unspecified vulnerability in Foxit PDF Editor and PDF Reader
Foxit PDF Reader (12.1.1.15289 and earlier) and Foxit PDF Editor (12.1.1.15289 and all previous 12.x versions, 11.2.5.53785 and all previous 11.x versions, and 10.1.11.37866 and earlier) on Windows allows Local Privilege Escalation when installed to a non-default directory because unprivileged users have access to an executable file of a system service.
local
low complexity
foxit
7.8
2023-03-29 CVE-2022-37381 Use After Free vulnerability in Foxit PDF Editor and PDF Reader
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader.
local
low complexity
foxit CWE-416
7.8
2023-01-18 CVE-2022-47881 Out-of-bounds Read vulnerability in Foxit PDF Editor and PDF Reader
Foxit PDF Reader and PDF Editor 11.2.1.53537 and earlier has an Out-of-Bounds Read vulnerability.
network
low complexity
foxit CWE-125
6.5
2022-11-21 CVE-2022-32774 Use After Free vulnerability in Foxit PDF Reader 12.0.1.12430
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430.
local
low complexity
foxit CWE-416
7.8