Home

CVE-2021-31444

Description

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 10.1.1.37576. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of U3D objects embedded in PDF files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-13241.

Risk Information

Base Score
3.3
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
EPSS Score
Exploitation Probability
14.423

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities fixed in Foxit PhantomPDF 10 (ML) (EXE) (10.1.5.37672)Windows
Multiple vulnerabilities fixed in Foxit PhantomPDF 10 (ML) (MSI) (10.1.5.37672)Windows
Multiple vulnerabilities fixed in Foxit PhantomPDF 10 (MSI) (10.1.5.37672)Windows
Multiple vulnerabilities fixed in Foxit PhantomPDF 10 (EXE) (10.1.5.37672)Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 8 (ML) 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 8 (ML) 9.7.5.29616Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 8 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 8 9.7.5.29616Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 10(EXE) 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (EXE) 9.7.5.29616Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (ML) (EXE) 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (ML) (EXE) 9.7.5.29616Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (ML) (MSI) 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (ML) (MSI) 9.7.5.29616Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (MSI) 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (MSI) 9.7.5.29616Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF Slim 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF Slim 9.7.5.29616Windows
Multiple Vulnerabilities are affected in Foxit Reader 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit Reader Enterprise 10.1.3.37598Windows
Multiple Vulnerabilities are affected in Foxit PhantomPDF 9 (EXE) 10.1.3.37598Windows
Multiple vulnerabilities are fixed in Foxit Reader (10.1.4.37651)Windows
Multiple vulnerabilities are fixed in Foxit Reader (ML) (10.1.4.37651)Windows
Multiple vulnerabilities are fixed in Foxit Reader Enterprise (10.1.4.37651)Windows
Multiple vulnerabilities are fixed in Foxit Reader Enterprise (ML) (10.1.4.37651)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (EXE) (10.1.5.37672)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (EXE) (10.1.4.37651)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (MSI) (10.1.5.37672)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (MSI) (10.1.4.37651)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (ML) (EXE) (10.1.5.37672)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (ML) (EXE) (10.1.4.37651)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (ML) (MSI) (10.1.5.37672)Windows
Multiple vulnerabilities are fixed in Foxit PhantomPDF 10 (ML) (MSI) (10.1.4.37651)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-321160Foxit PhantomPDF 10 (ML) (EXE) (10.1.5.37672)
PATCH-321161Foxit PhantomPDF 10 (ML) (MSI) (10.1.5.37672)
PATCH-321162Foxit PhantomPDF 10 (MSI) (10.1.5.37672)
PATCH-321159Foxit PhantomPDF 10 (EXE) (10.1.5.37672)
PATCH-311706Foxit PhantomPDF 8 ML (8.3.12.47136)
PATCH-311706Foxit PhantomPDF 8 ML (8.3.12.47136)
PATCH-311625Foxit PhantomPDF 8 (8.3.12.47136)
PATCH-311625Foxit PhantomPDF 8 (8.3.12.47136)
PATCH-317727Foxit PhantomPDF 9 (ML) (EXE) (9.7.5.29616)
PATCH-317727Foxit PhantomPDF 9 (ML) (EXE) (9.7.5.29616)
PATCH-317728Foxit PhantomPDF 9 (ML) (MSI) (9.7.5.29616)
PATCH-317728Foxit PhantomPDF 9 (ML) (MSI) (9.7.5.29616)
PATCH-317729Foxit PhantomPDF 9 (MSI) (9.7.5.29616)
PATCH-317729Foxit PhantomPDF 9 (MSI) (9.7.5.29616)
PATCH-306313Foxit PhantomPDF (MSI) (8.3.2) (Formerly Foxit PhantomPDF Slim)
PATCH-306313Foxit PhantomPDF (MSI) (8.3.2) (Formerly Foxit PhantomPDF Slim)
PATCH-336612Foxit Reader (2024.1.0.23997)
PATCH-336614Foxit Reader Enterprise (2024.1.0.23997)
PATCH-347386Foxit Reader (2025.1.0.27937)
PATCH-351917Foxit Reader (ML) (2025.2.1.33197)
PATCH-347385Foxit PDF Reader (MSI) (2025.1.0.27937)
PATCH-351864Foxit PDF Reader (ML) (MSI) (2025.2.0.33046)
PATCH-331212Foxit PhantomPDF 10 (EXE) (10.1.12.37872)
PATCH-331212Foxit PhantomPDF 10 (EXE) (10.1.12.37872)
PATCH-331215Foxit PhantomPDF 10 (MSI) (10.1.12.37872)
PATCH-331215Foxit PhantomPDF 10 (MSI) (10.1.12.37872)
PATCH-331213Foxit PhantomPDF 10 (ML) (EXE) (10.1.12.37872)
PATCH-331213Foxit PhantomPDF 10 (ML) (EXE) (10.1.12.37872)
PATCH-331214Foxit PhantomPDF 10 (ML) (MSI) (10.1.12.37872)
PATCH-331214Foxit PhantomPDF 10 (ML) (MSI) (10.1.12.37872)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234