CVE-2021-21822 – A use-after-free vulnerability exists in the JavaScript engine of Foxit Softwareâ&eu …

Vuln ID: CVE-2021-21822

Published:  2021-05-10  16:15:07Z

Description: A use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s PDF Reader, version 10.1.3.37598. A specially crafted PDF document can trigger the reuse of previously free memory, which can lead to arbitrary code execution. An attacker needs to trick the user into opening a malicious file or site to trigger this vulnerability if the browser plugin extension is enabled.

Source: NVD.NIST.GOV