Endpoint Vulnerability

Security updates available in Foxit Reader 10.1.1 and Foxit PhantomPDF 10.1.1

Description

Addressed potential issues where the application could be exposed to Use-After-Free Remote Code Execution vulnerability and crash when executing certain JavaScript in a PDF file. This occurs due to the access or use of pointer or object that has been removed after calling certain JavaScript functions (CVE-2020-13548/CVE-2020-13557/CVE-2020-13560/CVE-2020-13570).

Affected Products

Foxit Reader