Foxit PDF Reader Update Service Vulnerability (CVE-2024-9244) – Critical

2024-11-29

Vulnerability :

This critical vulnerability (CVE-2024-9244) allows local attackers to escalate privileges on Foxit PDF Reader installations. An attacker with low-privilege access can exploit this flaw in the update service’s configuration files to gain full system control.

Vulnerability Details:

Platform: Foxit PDF Reader (all versions)
Version: Not specified
Vulnerability: Incorrect Permission Assignment in Update Service (Local Privilege Escalation)
Severity: Critical
Date: November 22, 2024 (published), November 29, 2024 (last modified)

What Undercode Says:

This vulnerability poses a serious risk as it allows attackers to gain complete control of affected systems. Users of Foxit PDF Reader should update to the latest version immediately to address this issue.

Additional Notes:

This vulnerability was identified by the Zero Day Initiative (ZDI).
No further details or exploit code are publicly available at this time.

It is important to patch your systems as soon as possible to mitigate this critical vulnerability.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top