AI description
CVE-2024-30326 is identified as a Doc Object Use-After-Free Remote Code Execution vulnerability affecting Foxit PDF Reader. This flaw allows remote attackers to execute arbitrary code on vulnerable installations of the software. Exploitation of this vulnerability requires user interaction, typically by the target opening a malicious file or visiting a specially crafted web page. The underlying issue is a failure in Foxit PDF Reader to validate the existence of an object before performing operations on it, which an attacker can leverage to execute code within the context of the current process. Foxit addressed this vulnerability as part of its April 2024 security updates.
- Description
- Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Doc objects. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22593.
- Source
- zdi-disclosures@trendmicro.com
- NVD status
- Analyzed
- Products
- pdf_editor, pdf_reader
CVSS 3.0
- Type
- Secondary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- zdi-disclosures@trendmicro.com
- CWE-416
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
11
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5EAD23A5-0348-4C9A-B358-75547BC34187",
"versionEndIncluding": "10.1.12.37872",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*",
"matchCriteriaId": "AF4F8DD3-700E-44F5-A30E-B8E5945669B9",
"versionEndIncluding": "11.2.8.53842",
"versionStartIncluding": "11.0.0.49893",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*",
"matchCriteriaId": "BC04B3FE-AE97-4898-8AF3-69D16C5591C4",
"versionEndIncluding": "12.1.4.15400",
"versionStartIncluding": "12.0.0.12394",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E4BA6F03-462B-46C5-B11D-6CEF031FC20E",
"versionEndIncluding": "13.0.1.21693",
"versionStartIncluding": "13.0.0.21632",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*",
"matchCriteriaId": "0C75FEE6-54F3-49C6-BAEA-A09D23BE5D64",
"versionEndIncluding": "2023.3.0.23028",
"versionStartIncluding": "2023.1.0.15510",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:foxit:pdf_reader:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D7984224-C30D-44C9-9E7F-3033297B7F63",
"versionEndIncluding": "2023.3.0.23028",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
]