vulnerability
Foxit Reader: Unspecified Security Vulnerability (CVE-2021-38573)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Aug 11, 2021 | Aug 16, 2021 | Apr 7, 2026 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Aug 11, 2021
Added
Aug 16, 2021
Modified
Apr 7, 2026
Description
An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows writing to arbitrary files because a CombineFiles pathname is not validated.
Solution
foxit-reader-upgrade-10_1_4
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.