Vulnerabilities > Foxit > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-08-29 CVE-2022-25641 Unspecified vulnerability in Foxit PDF Editor, PDF Reader and Phantompdf
Foxit PDF Reader before 11.2.2 and PDF Editor before 11.2.2, and PhantomPDF before 10.1.8, mishandle cross-reference information during compressed-object parsing within signed documents.
local
low complexity
foxit
5.5
2022-07-18 CVE-2022-28681 Out-of-bounds Read vulnerability in Foxit PDF Editor and PDF Reader
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.1.53537.
local
low complexity
foxit CWE-125
6.1
2022-05-05 CVE-2022-27359 NULL Pointer Dereference vulnerability in Foxit PDF Editor and PDF Reader
Foxit PDF Reader before 12.0.1 and PDF Editor before 12.0.1 allow a this.maildoc NULL pointer dereference.
local
low complexity
foxit CWE-476
5.5
2022-03-10 CVE-2022-25108 NULL Pointer Dereference vulnerability in Foxit PDF Editor and PDF Reader
Foxit PDF Reader and Editor before 11.2.1 and PhantomPDF before 10.1.7 allow a NULL pointer dereference during PDF parsing because the pointer is used without proper validation.
local
low complexity
foxit CWE-476
5.5
2022-02-18 CVE-2022-24368 Unspecified vulnerability in Foxit PDF Editor and PDF Reader
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.1.0.52543.
network
low complexity
foxit
6.5
2022-02-18 CVE-2022-24370 Unspecified vulnerability in Foxit PDF Editor and PDF Reader
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader Foxit reader 11.0.1.0719 macOS.
network
low complexity
foxit
6.5
2021-07-20 CVE-2021-27517 Cross-site Scripting vulnerability in Foxit Phantompdf and Reader
Foxit PDF SDK For Web through 7.5.0 allows XSS.
network
low complexity
foxit CWE-79
6.1