Vulnerabilities > Foxit > PDF Reader > 9.0.1.1049
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-18 | CVE-2022-24370 | Out-of-bounds Read vulnerability in Foxit PDF Editor and PDF Reader This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader Foxit reader 11.0.1.0719 macOS. | 4.3 |
| 2022-02-18 | CVE-2022-24971 | Out-of-bounds Read vulnerability in Foxit PDF Editor and PDF Reader This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.1.0.52543. | 6.8 |
| 2022-02-11 | CVE-2022-24954 | Out-of-bounds Write vulnerability in Foxit PDF Editor and PDF Reader Foxit PDF Reader before 11.2.1 and Foxit PDF Editor before 11.2.1 have a Stack-Based Buffer Overflow related to XFA, for the 'subform colSpan="-2"' and 'draw colSpan="1"' substrings. | 7.5 |
| 2022-02-11 | CVE-2022-24955 | Uncontrolled Search Path Element vulnerability in Foxit PDF Editor and PDF Reader Foxit PDF Reader before 11.2.1 and Foxit PDF Editor before 11.2.1 have an Uncontrolled Search Path Element for DLL files. | 7.5 |
| 2022-01-04 | CVE-2021-45978 | OS Command Injection vulnerability in Foxit PDF Editor and PDF Reader Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via xfa.host.gotoURL in the XFA API. | 6.8 |
| 2022-01-04 | CVE-2021-45979 | OS Command Injection vulnerability in Foxit PDF Editor and PDF Reader Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via app.launchURL in the JavaScript API. | 6.8 |
| 2021-08-11 | CVE-2021-38563 | Improper Validation of Array Index vulnerability in multiple products An issue was discovered in Foxit PDF Reader before 11.0.1 and PDF Editor before 11.0.1. | 7.5 |
| 2021-08-11 | CVE-2021-38567 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in Foxit PDF Editor before 11.0.1 and PDF Reader before 11.0.1 on macOS. | 7.5 |
| 2021-08-04 | CVE-2021-34831 | Use After Free vulnerability in multiple products This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 10.1.4.37651. | 6.8 |
| 2021-08-04 | CVE-2021-34832 | Use After Free vulnerability in multiple products This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.0.0.49893. | 6.8 |