Vulnerability Details CVE-2017-16814
A Directory Traversal issue was discovered in the Foxit MobilePDF app before 6.1 for iOS. This occurs by abusing the URL + escape character during a Wi-Fi transfer, which could be exploited by attackers to bypass intended restrictions on local application files.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.4%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 3.3
References
Products affected by CVE-2017-16814
-
cpe:2.3:a:foxitsoftware:mobilepdf:2.2
-
cpe:2.3:a:foxitsoftware:mobilepdf:2.3
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.0
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.1
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.1.0.0824
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.1.1.0901
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.1.2.1013
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.1.3.1030
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.1.4
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.2
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.2.1.0401
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.3
-
cpe:2.3:a:foxitsoftware:mobilepdf:3.3.1
-
cpe:2.3:a:foxitsoftware:mobilepdf:4.0
-
cpe:2.3:a:foxitsoftware:mobilepdf:4.1
-
cpe:2.3:a:foxitsoftware:mobilepdf:4.1.1
-
cpe:2.3:a:foxitsoftware:mobilepdf:4.2
-
cpe:2.3:a:foxitsoftware:mobilepdf:4.3
-
cpe:2.3:a:foxitsoftware:mobilepdf:4.3.1.0218
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.0
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.0.2.0718
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.1
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.1.3
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.3
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.3.1
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.4
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.4.3
-
cpe:2.3:a:foxitsoftware:mobilepdf:5.4.5
-
cpe:2.3:a:foxitsoftware:mobilepdf:6.0.0