Vulnerability Details CVE-2015-8843
The Foxit Cloud Update Service (FoxitCloudUpdateService) in Foxit Reader 6.1 through 6.2.x and 7.x before 7.2.2, when an update to the Cloud plugin is available, allows local users to gain privileges by writing crafted data to a shared memory region, which triggers memory corruption.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.1%
CVSS Severity
CVSS v3 Score 7.4
CVSS v2 Score 6.9
References
Products affected by CVE-2015-8843
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.1.4
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.2
-
cpe:2.3:a:foxitsoftware:foxit_reader:6.2.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.0
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.0.1
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.0.6
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.1.5
-
cpe:2.3:a:foxitsoftware:foxit_reader:7.2