foxitsoftware
797 tracked vulnerabilities.
CVE-2020-8869
HIGH
Foxit Studio Photo < 3.6.6.918 - Remote Code Execution via TIF File Handling
Aug 20, 2020
CVSS 7.8
EPSS 0.03
CVE-2020-15638
HIGH
Foxit PhantomPDF and Reader < 10.0.0.35798 - Remote Code Execution via NodeProperties Type Confusion
Aug 20, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-15637
LOW
Foxit PhantomPDF and Reader < 10.0.0.35798 - Use-After-Free in SetLocalDescription
Aug 20, 2020
CVSS 3.3
EPSS 0.02
CVE-2020-15630
HIGH
Foxit Studio Photo < 3.6.6.924 - Out-of-bounds Read in PNG File Handling
Aug 20, 2020
CVSS 7.8
EPSS 0.05
CVE-2020-15629
HIGH
Foxit Studio Photo < 3.6.6.924 - Remote Code Execution via TIF File Handling
Aug 20, 2020
CVSS 7.8
EPSS 0.02
CVE-2020-13815
HIGH
Foxit Reader and PhantomPDF < 9.7.1 - Denial of Service via Indirect Object Reference Loop
Jun 04, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-13814
CRITICAL
Foxit PhantomPDF and Reader < 9.7.1 - Use-After-Free via Document Without Dictionary
Jun 04, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-13813
HIGH
Foxit Studio Photo < 3.6.6.922 - Untrusted Search Path via DLL in Current Working Directory
Jun 04, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-13812
HIGH
Foxit Studio Photo < 3.6.6.922 - Privilege Escalation via DLL Hijacking
Jun 04, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-13811
HIGH
Foxit Studio Photo < 3.6.6.922 - Out-of-bounds Write via Crafted TIFF File
Jun 04, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-13810
HIGH
Foxit Reader and PhantomPDF < 9.7.2 - Signature Validation Bypass via Modified File
Jun 04, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-13809
HIGH
Foxit Reader and PhantomPDF < 9.7.2 - Uncontrolled Resource Consumption via Long Strings in Content Stream
Jun 04, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-13808
HIGH
Foxit Reader and PhantomPDF < 9.7.2 - Denial of Service via Crafted Cross-Reference Stream Data
Jun 04, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-13807
HIGH
Foxit Reader and PhantomPDF < 9.7.2 - Denial of Service via Circular Reference Mishandling
Jun 04, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-13806
HIGH
Foxit PhantomPDF and Reader < 9.7.2 - Use-After-Free via JavaScript Execution
Jun 04, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-13805
CRITICAL
Foxit Reader and PhantomPDF < 9.7.2 - Unauthenticated Brute-Force Attack via CAS Service
Jun 04, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-13804
CRITICAL
Foxit Reader and PhantomPDF < 9.7.2 - Hardcoded Credentials Exposure in DocuSign Plugin
Jun 04, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-13803
HIGH
Foxit PhantomPDF and Reader for Mac < 4.0 - Signature Validation Bypass via Modified File
Jun 04, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-10913
HIGH
Foxit Reader and PhantomPDF < 9.7.1.29511 - Remote Code Execution via OCRAndExportToExcel Command
Apr 22, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-10912
HIGH
Foxit PhantomPDF and Reader < 9.7.1.29511 - Remote Code Execution via SetFieldValue Command
Apr 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-10911
HIGH
Foxit PhantomPDF and Reader < 9.7.1.29511 - Remote Code Execution via GetFieldValue Command Type Confusion
Apr 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-10910
HIGH
Foxit PhantomPDF and Reader < 9.7.1.29511 - Remote Code Execution via RotatePage Command Type Confusion
Apr 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-10909
HIGH
Foxit PhantomPDF and Reader < 9.7.1.29511 - Remote Code Execution via AddWatermark Command Type Confusion
Apr 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-10908
HIGH
Foxit PhantomPDF and Reader < 9.7.1.29511 - Remote Code Execution via Export Command Type Confusion
Apr 22, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-10907
HIGH
Foxit PhantomPDF and Reader < 9.7.1.29511 - Remote Code Execution via XFA Form Widget Handling
Apr 22, 2020
CVSS 7.8
EPSS 0.02
Products
phantompdf 549
foxit_reader 372
reader 259
foxit_studio_photo 54
pdf_editor 28
3d 20
foxit_pdf_sdk_activex 10
u3d 9
enterprise_reader 3
pdf_reader 3
quick_pdf_library 3
wac_server 3
foxit_pdf_toolkit 2
mobilepdf 2
e-mail_advertising_system 1
foxit_advanced_pdf_editor 1
foxit_mobilepdf_-_pdf_reader 1
foxit_pdf 1
foxit_pdf_sdk_dll 1
foxit_phantom 1
jpeg2000\/jbig2_decoder_add-on 1
jpeg2000_jbig2_decoder_add-on 1
pdf_activex 1
pdf_compressor 1
Quick Filters