VYPR

MobilePDF

by Foxitsoftware

CVEs (3)

  • CVE-2017-16814MedFeb 26, 2018
    risk 0.36cvss 5.5epss 0.01

    A Directory Traversal issue was discovered in the Foxit MobilePDF app before 6.1 for iOS. This occurs by abusing the URL + escape character during a Wi-Fi transfer, which could be exploited by attackers to bypass intended restrictions on local application files.

  • CVE-2017-16813MedFeb 26, 2018
    risk 0.36cvss 5.5epss 0.01

    A denial-of-service issue was discovered in the Foxit MobilePDF app before 6.1 for iOS. This occurs when a user uploads a file that includes a hexadecimal Unicode character in the "filename" parameter via Wi-Fi, since the app could fail to parse this.

  • CVE-2014-6853Oct 1, 2014
    risk 0.00cvss epss 0.00

    The Foxit MobilePDF - PDF Reader (aka com.foxit.mobile.pdf.lite) application 2.2.0.0616 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.