High severity8.8NVD Advisory· Published Apr 23, 2018· Updated Jun 17, 2026
CVE-2017-14458
CVE-2017-14458
Description
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 8.3.2.25013. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user to open the malicious file to trigger this vulnerability. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: = 8.3.2.25013
- Range: = 8.3.2.25013
- Talos/Foxitv5Range: Foxit Software Foxit PDF Reader 8.3.2.25013.
Patches
Vulnerability mechanics
References
3- www.talosintelligence.com/vulnerability_reports/TALOS-2017-0506nvdExploitThird Party Advisory
- www.securityfocus.com/bid/103942nvdBroken LinkThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1040733nvdBroken LinkThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.