Foxit PDF Reader < 12.0.1 Multiple Vulnerabilities

high Nessus Plugin ID 163575

Language:

Version 1.11 Oct 9, 2023, 7:01 PM Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available") Detection CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Plugin Feed: 202310091901
Version 1.10 Oct 9, 2023, 5:00 PM Detection Exploit attributes ("Exploit available" set to "True") Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Plugin Feed: 202310091700
Version 1.10 Apr 11, 2023, 2:08 PM Plugin metadata Plugin Feed: 202304111408
Version 1.9 Apr 7, 2023, 2:10 PM CVSSv3 score source (changed from "CVE-2022-37376" to "CVE-2022-37391") CVSS metrics ("CVSSv3 score" changed from 3.3 to 7.8. "CVSSv3 score" changed from 3.3 to 7.8. "CVSSv3 score" changed from 3.3 to 7.8. "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H") CVSSv3 severity (based on CVE-2022-37391, severity increased from "Low" to "High") Plugin Feed: 202304071410
Version 1.8 Apr 6, 2023, 6:58 PM CVSS metrics ("CVSSv3 score" changed from 7.5 to 3.3. "CVSSv3 score" changed from 7.5 to 3.3. "CVSSv3 score" changed from 7.5 to 3.3. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N". "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N". "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N". "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N") CVSSv3 score source (set to "CVE-2022-37376") CVSSv3 severity (based on CVE-2022-37376, severity decreased from "High" to "Low") Plugin Feed: 202304061858
Version 1.7 Mar 30, 2023, 2:02 PM CVSS metrics ("CVSSv2 score" changed from 5.0 to 4.3. "CVSSv2 score" changed from 5.0 to 4.3. "CVSSv2 score" changed from 5.0 to 4.3. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P" to "CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P" to "CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P") CVSSv2 score source (changed from "CVE-2022-27944" to "CVE-2022-27359") Plugin Feed: 202303301402
Version 1.6 Mar 21, 2023, 7:30 PM Plugin metadata Plugin Feed: 202303211930
Version 1.5 Nov 14, 2022, 9:03 PM IAVM reference Plugin Feed: 202211142103

* Changelogs are generally available for changes made after Nov 1, 2022