Lucene search

China National Vulnerability DatabaseCNVD-2024-17006

HistoryApr 07, 2024 - 12:00 a.m.

Foxit PDF Reader AcroForm Code Execution Vulnerability (CNVD-2024-17006)

2024-04-0700:00:00

China National Vulnerability Database

www.cnvd.org.cn

foxit pdf reader

acroform

code execution

vulnerability

remote attacker

special file request

application crash

arbitrary code

7.8 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.0%

JSON

Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. A code execution vulnerability exists in Foxit PDF Reader AcroForm, which can be exploited by a remote attacker to submit a special file request and trick the user into parsing it, which can crash the application or execute arbitrary code in the context of the application.