CVE-2023-33876

Severity Score

8.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Attend

*SSVC

Descriptions

A use-after-free vulnerability exists in the way Foxit Reader 12.1.2.15332 handles destroying annotations. Specially crafted Javascript code inside a malicious PDF document can trigger reuse of a previously freed object, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability. Exploitation is also possible if a user visits a specially crafted, malicious site if the browser plugin extension is enabled.

Existe una vulnerabilidad de uso después de la liberación en la forma en que Foxit Reader 12.1.2.15332 maneja la destrucción de anotaciones. El código Javascript especialmente manipulado dentro de un documento PDF malicioso puede desencadenar la reutilización de un objeto previamente liberado, lo que puede provocar daños en la memoria y provocar la ejecución de código arbitrario. Un atacante debe engañar al usuario para que abra el archivo malicioso para desencadenar esta vulnerabilidad. La explotación también es posible si un usuario visita un sitio malicioso especialmente manipulado si la extensión del complemento del navegador está habilitada.

*Credits: Discovered by Kamlapati Choubey and Aleksandar Nikolic of Cisco Talos.

CVSS Scores

NISTv3.1 8.8

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Attend

Exploitation

Poc

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2023-06-27 CVE Reserved
2023-07-19 CVE Published
2024-08-20 EPSS Updated
2024-10-28 CVE Updated
2024-10-28 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-416: Use After Free

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC
https://talosintelligence.com/vulnerability_reports/TALOS-2023-1796	2024-10-28

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Foxit Search vendor "Foxit"		Pdf Reader Search vendor "Foxit" for product "Pdf Reader"				12.1.2.15332 Search vendor "Foxit" for product "Pdf Reader" and version "12.1.2.15332"		-		Affected