Multiple vulnerabilities in Foxit Reader

Описание

Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Null Pointer Dereference vulnerability can be exploited to cause denial of service.
2. Out of bounds memory read vulnerability can be exploited to obtain sensitive information.
3. Use after free vulnerability can be exploited remotely to execute arbitrary code.
4. Type Confusion vulnerability can be exploited remotely to execute arbitrary code.
5. Memory corruption vulnerability can be exploited remotely to execute arbitrary code.
6. Use after free vulnerability can be exploited to obtain sensitive information.
7. Out of bounds memory read vulnerability can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

• Security updates available in Foxit PDF Reader 12.0.1 and Foxit PDF Editor 12.0.1
  

Связанные продукты

• Foxit-Reader
• Foxit-Reader-Enterprise

Список CVE

• CVE-2022-27944
  critical
• CVE-2022-26979
  critical
• CVE-2022-37383
  high
• CVE-2022-37384
  critical
• CVE-2022-37377
  critical
• CVE-2022-37381
  critical
• CVE-2022-37387
  critical
• CVE-2022-37390
  critical
• CVE-2022-37379
  high
• CVE-2022-37386
  high
• CVE-2022-37388
  critical
• CVE-2022-27359
  high
• CVE-2022-37376
  warning
• CVE-2022-37389
  critical
• CVE-2022-37385
  critical
• CVE-2022-37378
  critical
• CVE-2022-37380
  high
• CVE-2022-37391
  critical
• CVE-2022-37382
  high

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com