Vulnerabilities > Foxitsoftware > Foxit Reader

DATE CVE VULNERABILITY TITLE RISK
2018-11-05 CVE-2018-18933 Out-of-bounds Read vulnerability in Foxitsoftware Foxit Reader and U3D
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation near NULL starting at FoxitReader!safe_vsnprintf+0x00000000002c4330" issue.
network
low complexity
foxitsoftware CWE-125
critical
 9.1
9.1
2018-08-30 CVE-2018-14317 Incorrect Type Conversion or Cast vulnerability in Foxitsoftware Foxit Reader
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.1.0.5096.
network
low complexity
foxitsoftware CWE-704
8.8
8.8
2018-08-01 CVE-2018-3939 Use After Free vulnerability in Foxitsoftware Foxit Reader
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096.
network
low complexity
foxitsoftware CWE-416
8.8
8.8
2018-08-01 CVE-2018-3924 Use After Free vulnerability in Foxitsoftware Foxit Reader
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.5096.
local
low complexity
foxitsoftware CWE-416
7.8
7.8
2018-07-31 CVE-2018-14316 Out-of-bounds Read vulnerability in Foxitsoftware Foxit Reader
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.1.5096.
network
low complexity
foxitsoftware CWE-125
6.5
6.5
2018-07-31 CVE-2018-14315 Use After Free vulnerability in Foxitsoftware Foxit Reader
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096.
network
low complexity
foxitsoftware CWE-416
8.8
8.8
2018-07-31 CVE-2018-14314 Use After Free vulnerability in Foxitsoftware Foxit Reader
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096.
network
low complexity
foxitsoftware CWE-416
8.8
8.8
2018-07-31 CVE-2018-14313 Incorrect Type Conversion or Cast vulnerability in Foxitsoftware Foxit Reader
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096.
network
low complexity
foxitsoftware CWE-704
8.8
8.8
2018-07-31 CVE-2018-14312 Use After Free vulnerability in Foxitsoftware Foxit Reader
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.5096.
network
low complexity
foxitsoftware CWE-416
8.8
8.8
2018-07-31 CVE-2018-14311 Incorrect Type Conversion or Cast vulnerability in Foxitsoftware Foxit Reader
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader.
network
low complexity
foxitsoftware CWE-704
8.8
8.8