CVE-2024-7724

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of AcroForms. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23900.

CVSS v3.0 8.8 HIGH

8.8^/10

CVSS v3.0 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.zerodayinitiative.com/advisories/ZDI-24-1126/	Third Party Advisory
https://www.foxit.com/support/security-bulletins.html	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:foxit:pdf_editor::::::windows::*
	cpe:2.3:a:foxit:pdf_editor::::::windows::*
	cpe:2.3:a:foxit:pdf_reader::::::::
	cpe:2.3:a:foxit:pdf_editor::::::windows::*
	cpe:2.3:a:foxit:pdf_editor::::::windows::*

History

18 Oct 2024, 15:45

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8
CPE		cpe:2.3:a:foxit:pdf_reader:::::::: cpe:2.3:a:foxit:pdf_editor::::::windows::*
First Time		Foxit pdf Editor Foxit Foxit pdf Reader
CWE		CWE-416
References	~~() https://www.foxit.com/support/security-bulletins.html -~~	() https://www.foxit.com/support/security-bulletins.html - Vendor Advisory
References	~~() https://www.zerodayinitiative.com/advisories/ZDI-24-1126/ -~~	() https://www.zerodayinitiative.com/advisories/ZDI-24-1126/ - Third Party Advisory

21 Aug 2024, 17:24

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-08-21 16:15

Updated : 2024-10-18 15:45

NVD link : CVE-2024-7724

Mitre link : CVE-2024-7724

JSON object : View

Products Affected

foxit

pdf_reader
pdf_editor

CWE

CWE-416

Use After Free

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1126/", "name": "ZDI-24-1126", "tags": ["Third Party Advisory"], "refsource": ""}, {"url": "https://www.foxit.com/support/security-bulletins.html", "name": "vendor-provided URL", "tags": ["Vendor Advisory"], "refsource": ""}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the handling of AcroForms. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-23900."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-416"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2024-7724", "ASSIGNER": "zdi-disclosures@trendmicro.com"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}}, "publishedDate": "2024-08-21T16:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:windows:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "13.1.3.22478", "versionStartIncluding": "13.0.0.21632"}, {"cpe23Uri": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:windows:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "2024.2.3.25184", "versionStartIncluding": "2023.1.0.15510"}, {"cpe23Uri": "cpe:2.3:a:foxit:pdf_reader:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "2024.2.3.25184"}, {"cpe23Uri": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:windows:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "11.2.11.54113"}, {"cpe23Uri": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:windows:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "12.1.8.15703", "versionStartIncluding": "12.0.0.12394"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2024-10-18T15:45Z"}