vulnerability

Foxit Reader: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') (CVE-2020-35990)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:M/Au:N/C:N/I:N/A:C)	Aug 11, 2023	Aug 18, 2023	Jan 28, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:N/I:N/A:C)

Published

Aug 11, 2023

Added

Aug 18, 2023

Modified

Jan 28, 2025

Description

Buffer Overflow vulnerability in cFilenameInit parameter in browseForDoc function in Foxit Software Foxit PDF Reader version 10.1.0.37527, allows local attackers to cause a denial of service (DoS) via crafted .pdf file.

Solution

foxit-reader-upgrade-latest

References

CVE-2020-35990
https://attackerkb.com/topics/CVE-2020-35990
URL-http://foxit.com
URL-https://www.foxitsoftware.com/support/security-bulletins.php

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today