CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
29.6%
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service.
Below is a complete list of vulnerabilities:
Public exploits exist for this vulnerability.
CVE-2021-40326 high
CVE-2021-41785 critical
CVE-2021-41783 critical
CVE-2021-41780 critical
CVE-2021-41781 critical
CVE-2021-41782 critical
CVE-2021-41784 critical
CVE-2021-34952 unknown
CVE-2021-34962 unknown
CVE-2021-34950 unknown
CVE-2021-34958 unknown
CVE-2021-34957 unknown
CVE-2021-34963 unknown
CVE-2021-34948 unknown
CVE-2021-34960 unknown
CVE-2021-34973 unknown
CVE-2021-34951 unknown
CVE-2021-34956 unknown
CVE-2021-34967 unknown
CVE-2021-34971 unknown
CVE-2021-34975 unknown
CVE-2021-34953 unknown
CVE-2021-34976 unknown
CVE-2021-34959 unknown
CVE-2021-34955 unknown
CVE-2021-34966 unknown
CVE-2021-34965 unknown
CVE-2021-34970 unknown
CVE-2021-34968 unknown
CVE-2021-34974 unknown
CVE-2021-34972 unknown
CVE-2021-34949 unknown
CVE-2021-34961 unknown
CVE-2021-34954 unknown
CVE-2021-34964 unknown
CVE-2021-34969 unknown
Update to the latest version
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.