Vulnerabilities > Foxitsoftware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-17 | CVE-2018-10474 | Out-of-bounds Write vulnerability in Foxitsoftware Phantompdf This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. | 8.8 |
| 2018-05-17 | CVE-2018-10473 | Out-of-bounds Write vulnerability in Foxitsoftware Phantompdf This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. | 8.8 |
| 2018-04-24 | CVE-2017-17557 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Foxitsoftware Phantompdf In Foxit Reader before 9.1 and Foxit PhantomPDF before 9.1, a flaw exists within the parsing of the BITMAPINFOHEADER record in BMP files. | 8.8 |
| 2018-04-23 | CVE-2018-10303 | Use After Free vulnerability in Foxitsoftware Phantompdf A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-y0nqfutlf3. | 8.8 |
| 2018-04-23 | CVE-2018-10302 | Use After Free vulnerability in Foxitsoftware Phantompdf A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-jyb51g3mv9. | 7.8 |
| 2018-04-19 | CVE-2018-3843 | Incorrect Type Conversion or Cast vulnerability in Foxitsoftware Foxit Reader 9.0.1.1049 An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049 parses files with associated file annotations. | 8.8 |
| 2018-04-19 | CVE-2018-3842 | Access of Uninitialized Pointer vulnerability in Foxitsoftware Foxit Reader 9.0.1.1049 An exploitable use of an uninitialized pointer vulnerability exists in the JavaScript engine in Foxit PDF Reader version 9.0.1.1049. | 8.8 |
| 2018-02-07 | CVE-2016-6169 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Foxitsoftware Foxit Reader Heap-based buffer overflow in Foxit Reader and PhantomPDF 7.3.4.311 and earlier on Windows allows remote attackers to cause a denial of service (memory corruption and application crash) or potentially execute arbitrary code via the Bezier data in a crafted PDF file. | 7.8 |
| 2018-02-07 | CVE-2016-6168 | Use After Free vulnerability in Foxitsoftware Foxit Reader Use-after-free vulnerability in Foxit Reader and PhantomPDF 7.3.4.311 and earlier on Windows allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a crafted PDF file. | 7.8 |
| 2017-12-20 | CVE-2017-16587 | Use After Free vulnerability in Foxitsoftware Foxit Reader 8.3.2.25013 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 8.3.2.25013. | 8.8 |