CVE-2023-32664

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 19, 2023

Updated: Sep 15, 2023

CWE ID 843

Summary

CVE-2023-32664 is a type confusion vulnerability affecting the Javascript checkThisBox method in Foxit Reader 12.1.2.15332. Maliciously crafted JavaScript code within a malicious PDF document can exploit this flaw, resulting in memory corruption and enabling remote code execution. Triggering this vulnerability requires users to open a malicious file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Foxit Software Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rzoC_d
https://www.cve.org/CVERecord?id=CVE-2023-32664
https://nvd.nist.gov/vuln/detail/CVE-2023-32664

Back to Vulnerability Database

CVE-2023-32664

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations