Vulnerabilidades en Foxit
776 resultadosAnálisis Vexday
Com 776 CVEs catalogadas e nenhuma atualmente listada no catálogo KEV da CISA, o Foxit apresenta taxa de exploração ativa abaixo da média geral do catálogo, o que sugere menor pressão imediata de ameaças confirmadas em campo. No entanto, o escore EPSS de 0,8948 associado a CVE-2021-34833 indica altíssima probabilidade estatística de exploração para essa vulnerabilidade específica, merecendo atenção prioritária mesmo na ausência de confirmação formal no KEV. O tipo de falha mais recorrente é CWE-416 (use-after-free), categoria historicamente propícia à execução de código arbitrário e frequentemente visada em leitores e editores de PDF. A existência de PoCs públicas para duas vulnerabilidades reforça a necessidade de manter patches aplicados, ainda que o volume de novas CVEs nos últimos 90 dias esteja zerado.
CVE-2022-24369HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.1.0.52543. User interaEPSS 2.4%CVE-2022-24364HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader 11.1.0.52543. User interaEPSS 2.4%CVE-2018-3960HIGHA use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free conEPSS 2.4%CVE-2018-3961HIGHA use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free conEPSS 2.4%CVE-2018-3959HIGHA use-after-free vulnerability exists in the JavaScript engine of Foxit Software's Foxit PDF Reader version 9.1.0.5096. A use-after-free conEPSS 2.4%CVE-2018-3939HIGHAn exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially EPSS 2.3%CVE-2022-24356HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader Foxit reader 11.0.1.0719 EPSS 2.2%CVE-2021-27266LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 10.1.0.37527. UseEPSS 2.2%CVE-2021-27264LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 10.1.0.37527. UseEPSS 2.2%CVE-2020-10890HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interacEPSS 2.2%CVE-2020-10892HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.7.0.29478. User interacEPSS 2.2%CVE-2021-31471LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User inEPSS 2.1%CVE-2021-31469LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User inEPSS 2.1%CVE-2021-31445LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User inEPSS 2.0%CVE-2021-31444LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User inEPSS 2.0%CVE-2021-27265LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 10.1.0.37527. UseEPSS 2.0%CVE-2021-31448LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User inEPSS 2.0%CVE-2021-31443LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User inEPSS 2.0%CVE-2021-27262LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 10.1.0.37527. UseEPSS 2.0%CVE-2021-31447LOWThis vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User inEPSS 2.0%