Vulnerabilities > Foxitsoftware > Foxit Reader > 12.1.3.15356

DATE CVE VULNERABILITY TITLE RISK
2023-11-27 CVE-2023-35985 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Foxitsoftware Foxit Reader 12.1.3.15356
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit Reader 12.1.3.15356 due to a failure to properly validate a dangerous extension.
network
low complexity
foxitsoftware CWE-610
8.8
8.8
2023-11-27 CVE-2023-39542 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Foxitsoftware Foxit Reader 12.1.3.15356
A code execution vulnerability exists in the Javascript saveAs API of Foxit Reader 12.1.3.15356.
network
low complexity
foxitsoftware CWE-610
8.8
8.8
2023-11-27 CVE-2023-40194 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Foxitsoftware Foxit Reader 12.1.3.15356
An arbitrary file creation vulnerability exists in the Javascript exportDataObject API of Foxit Reader 12.1.3.15356 due to mistreatment of whitespace characters.
network
low complexity
foxitsoftware CWE-610
8.8
8.8
2023-11-27 CVE-2023-41257 Type Confusion vulnerability in Foxitsoftware Foxit Reader 12.1.3.15356
A type confusion vulnerability exists in the way Foxit Reader 12.1.2.15356 handles field value properties.
network
low complexity
foxitsoftware CWE-843
8.8
8.8