Vulnerabilities > Foxitsoftware > Foxit Reader > 5.3.1

DATE CVE VULNERABILITY TITLE RISK
2022-11-09 CVE-2022-43310 Uncontrolled Search Path Element vulnerability in Foxitsoftware Foxit Reader
An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path.
local
low complexity
foxitsoftware CWE-427
7.8
7.8
2021-08-11 CVE-2021-38568 Out-of-bounds Write vulnerability in Foxitsoftware Foxit Reader
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.
network
low complexity
foxitsoftware CWE-787
critical
 9.8
9.8
2021-08-11 CVE-2021-38569 Uncontrolled Recursion vulnerability in Foxitsoftware Foxit Reader
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.
network
low complexity
foxitsoftware CWE-674
7.5
7.5
2021-08-11 CVE-2021-38570 Link Following vulnerability in Foxitsoftware Foxit Reader
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.
network
low complexity
foxitsoftware CWE-59
critical
 9.1
9.1
2021-08-11 CVE-2021-38571 Uncontrolled Search Path Element vulnerability in Foxitsoftware Foxit Reader
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.
local
low complexity
foxitsoftware CWE-427
7.8
7.8
2021-08-11 CVE-2021-38572 Unspecified vulnerability in Foxitsoftware Foxit Reader
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.
network
low complexity
foxitsoftware
critical
 9.8
9.8
2021-08-11 CVE-2021-38573 Unspecified vulnerability in Foxitsoftware Foxit Reader
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.
network
low complexity
foxitsoftware
critical
 9.8
9.8
2021-08-11 CVE-2021-38574 SQL Injection vulnerability in Foxitsoftware Foxit Reader
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4.
network
low complexity
foxitsoftware CWE-89
critical
 9.8
9.8
2021-08-11 CVE-2021-33793 Out-of-bounds Write vulnerability in Foxitsoftware Foxit Reader
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion.
network
low complexity
foxitsoftware CWE-787
critical
 9.8
9.8
2021-08-11 CVE-2021-33794 Unspecified vulnerability in Foxitsoftware Foxit Reader
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 allow information disclosure or an application crash after mishandling the Tab key during XFA form interaction.
network
low complexity
foxitsoftware
critical
 9.1
9.1