Foxit Software PDF Reader 12.0.1.12430
Approved changes feed: RSS · Atom
cpe:2.3:a:foxit:pdf_reader:12.0.1.12430:*:*:*:*:*:*:*
part: a version: 12.0.1.12430 update: *
| Vendor | Foxit (3778a6df-af29-5bee-a995-959672e13d77) |
|---|---|
| Product | Pdf Reader (e9c9f198-a64d-5586-91d0-9e5c428b0da1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2022-40129 |
vulnerable | 2026-06-03 14:47:59.788659 |
Details available
HIGH (8.8)
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. A specially-crafted PDF document can trigger the reuse of previously freed memory via misusing Optional Content Group API, which can lead to arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially-crafted, malicious site if the browser plugin extension is enabled.
Published: 2022-11-21T16:05:38.215Z
Updated: 2025-04-15T18:39:51.574Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-38097 |
vulnerable | 2026-06-03 14:47:49.197655 |
Details available
HIGH (8.8)
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. By prematurely destroying annotation objects, a specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially-crafted, malicious site if the browser plugin extension is enabled.
Published: 2022-11-21T16:05:37.153Z
Updated: 2025-04-15T18:40:02.047Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-37332 |
vulnerable | 2026-06-03 14:47:46.995347 |
Details available
HIGH (8.8)
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. A specially-crafted PDF document can trigger the reuse of previously freed memory via misusing media player API, which can lead to arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially-crafted, malicious site if the browser plugin extension is enabled.
Published: 2022-11-21T16:05:36.155Z
Updated: 2025-04-15T18:40:12.492Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-32774 |
vulnerable | 2026-06-03 14:47:23.238564 |
Details available
HIGH (8.8)
A use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 12.0.1.12430. By prematurely deleting objects associated with pages, a specially-crafted PDF document can trigger the reuse of previously freed memory, which can lead to arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially-crafted, malicious site if the browser plugin extension is enabled.
Published: 2022-11-21T16:05:35.031Z
Updated: 2025-04-15T18:40:22.174Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.