Vulnerabilities > Foxit > PDF Reader

DATE CVE VULNERABILITY TITLE RISK
2022-08-29 CVE-2021-40326 Improper Verification of Cryptographic Signature vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, mishandle hidden and incremental data in signed documents.
local
low complexity
foxit CWE-347
5.5
5.5
2022-08-29 CVE-2021-41780 Use After Free vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.
local
low complexity
foxit CWE-416
7.8
7.8
2022-08-29 CVE-2021-41781 Use After Free vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.
local
low complexity
foxit CWE-416
7.8
7.8
2022-08-29 CVE-2021-41782 Use After Free vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.
local
low complexity
foxit CWE-416
7.8
7.8
2022-08-29 CVE-2021-41783 Use After Free vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.
local
low complexity
foxit CWE-416
7.8
7.8
2022-08-29 CVE-2021-41784 Use After Free vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.
local
low complexity
foxit CWE-416
7.8
7.8
2022-08-29 CVE-2021-41785 Use After Free vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.1 and PDF Editor before 11.1, and PhantomPDF before 10.1.6, allow attackers to trigger a use-after-free and execute arbitrary code because JavaScript is mishandled.
local
low complexity
foxit CWE-416
7.8
7.8
2022-08-29 CVE-2022-25641 Unspecified vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.2.2 and PDF Editor before 11.2.2, and PhantomPDF before 10.1.8, mishandle cross-reference information during compressed-object parsing within signed documents.
local
low complexity
foxit
5.5
5.5
2022-08-06 CVE-2022-26979 NULL Pointer Dereference vulnerability in Foxit PDF Editor and PDF Reader
Foxit PDF Reader before 12.0.1 and PDF Editor before 12.0.1 allow a NULL pointer dereference when this.Span is used for oState of Collab.addStateModel, because this.Span.text can be NULL.
network
low complexity
foxit CWE-476
7.5
7.5
2022-08-06 CVE-2022-27944 NULL Pointer Dereference vulnerability in Foxit PDF Editor and PDF Reader
Foxit PDF Reader before 12.0.1 and PDF Editor before 12.0.1 allow an exportXFAData NULL pointer dereference.
network
low complexity
foxit CWE-476
7.5
7.5