CVE-2024-47810

18.12.2024, 16:15

A use-after-free vulnerability exists in the way Foxit Reader 2024.3.0.26795 handles a 3D page object. A specially crafted Javascript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially crafted, malicious site if the browser plugin extension is enabled.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.8 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
talos	CNA	8.8 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CISA-ADP	ADP	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 52%

Vendor	Product	Version
foxit	pdf_editor	𝑥 ≤ 11.2.11.54113
foxit	pdf_editor	12.0.0 ≤ 𝑥 ≤ 12.1.8.15703
foxit	pdf_editor	13.0.0 ≤ 𝑥 ≤ 13.1.4.23147
foxit	pdf_editor	2023.1.0.15510 ≤ 𝑥 ≤ 2023.3.0.23028
foxit	pdf_editor	2024.1.0.23997 ≤ 𝑥 ≤ 2024.3.0.26795
foxit	pdf_reader	𝑥 ≤ 2024.3.0.26795

𝑥

= Vulnerable software versions

Known Exploits!

Common Weakness Enumeration

CWE-416 - Use After Free
Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code.

References

https://talosintelligence.com/vulnerability_reports/TALOS-2024-2094

https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2094