VYPR

Vendor CVEs

Foxitsoftware

All CVEs

1,142 total · sorted by risk
  • CVE-2018-21239Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows NTLM credential theft via a GoToE or GoToR action.

  • CVE-2018-21240Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit Reader and PhantomPDF before 9.2. It allows memory consumption via an ArrayBuffer(0xfffffffe) call.

  • CVE-2018-21241Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit PhantomPDF before 8.3.6. It has an untrusted search path that allows a DLL to execute remote code.

  • CVE-2018-21242Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.6. It allows Remote Code Execution via a GoToE or GoToR action.

  • CVE-2018-21243Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit PhantomPDF before 8.3.6. It has COM object mishandling when Microsoft Word is used.

  • CVE-2018-21244Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.6. It allows arbitrary application execution via an embedded executable file in a PDF portfolio, aka FG-VD-18-029.

  • CVE-2019-20822Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in the 3D Plugin Beta for Foxit Reader and PhantomPDF before 9.7.0.29430. It has an out-of-bounds write via incorrect image data.

  • CVE-2019-20821Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit PhantomPDF Mac before 3.4. It has a NULL pointer dereference.

  • CVE-2019-20820Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference during the parsing of file data.

  • CVE-2019-20819Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows stack consumption via nested function calls for XML parsing.

  • CVE-2019-20818Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It allows memory consumption because data is created for each page of an application level.

  • CVE-2019-20817Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7. It has a NULL pointer dereference.

  • CVE-2019-20816Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.12. It has a NULL pointer dereference during the parsing of file data.

  • CVE-2019-20815Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows stack consumption via nested function calls for XML parsing.

  • CVE-2019-20814Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.12. It allows memory consumption because data is created for each page of an application level.

  • CVE-2019-20813Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit PhantomPDF before 8.3.12. It has a NULL pointer dereference.

  • CVE-2020-13815Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It allows stack consumption via a loop of an indirect object reference.

  • CVE-2020-13814Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.1. It has a use-after-free via a document that lacks a dictionary.

  • CVE-2020-13813Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit Studio Photo before 3.6.6.922. It allows local users to gain privileges via a crafted DLL in the current working directory when FoxitStudioPhoto366_3.6.6.916.exe is used.

  • CVE-2020-13812Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit Studio Photo before 3.6.6.922. It allows local users to gain privileges via a crafted DLL in the current working directory.

  • CVE-2020-13811Jun 4, 2020
    risk 0.00cvss epss 0.03

    An issue was discovered in Foxit Studio Photo before 3.6.6.922. It has an out-of-bounds write via a crafted TIFF file.

  • CVE-2020-13810Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows signature validation bypass via a modified file or a file with non-standard signatures.

  • CVE-2020-13808Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via crafted cross-reference stream data.

  • CVE-2020-13809Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows resource consumption via long strings in the content stream.

  • CVE-2020-13807Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has circular reference mishandling that causes a loop.

  • CVE-2020-13806Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has a use-after-free because of JavaScript execution after a deletion or close operation.

  • CVE-2020-13805Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It has brute-force attack mishandling because the CAS service lacks a limit on login failures.

  • CVE-2020-13804Jun 4, 2020
    risk 0.00cvss epss 0.02

    An issue was discovered in Foxit Reader and PhantomPDF before 9.7.2. It allows information disclosure of a hardcoded username and password in the DocuSign plugin.

  • CVE-2020-13803Jun 4, 2020
    risk 0.00cvss epss 0.01

    An issue was discovered in Foxit PhantomPDF Mac and Foxit Reader for Mac before 4.0. It allows signature validation bypass via a modified file or a file with non-standard signatures.

  • CVE-2020-10913Apr 22, 2020
    risk 0.00cvss epss 0.07

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10911Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10912Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10909Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10908Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10910Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10906Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10907Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10904Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10905Apr 22, 2020
    risk 0.00cvss epss 0.03

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The…

  • CVE-2020-10902Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10903Apr 22, 2020
    risk 0.00cvss epss 0.03

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The…

  • CVE-2020-10900Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10901Apr 22, 2020
    risk 0.00cvss epss 0.03

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The…

  • CVE-2020-10898Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10899Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10897Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10896Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10893Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10895Apr 22, 2020
    risk 0.00cvss epss 0.05

    This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw…

  • CVE-2020-10894Apr 22, 2020
    risk 0.00cvss epss 0.03

    This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The…

Page 18 of 23