{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2024-29072", "assignerOrgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "state": "PUBLISHED", "assignerShortName": "talos", "dateReserved": "2024-05-03T19:29:27.157Z", "datePublished": "2024-05-28T13:52:58.113Z", "dateUpdated": "2024-08-02T01:03:51.701Z"}, "containers": {"cna": {"affected": [{"vendor": "Foxit", "product": "Foxit Reader", "versions": [{"version": "2024.2.0.25138", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validation of the updater executable before executing it. A low privilege user can trigger the update action which can result in unexpected elevation of privilege."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-295: Improper Certificate Validation", "type": "CWE", "cweId": "CWE-295"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH"}}], "providerMetadata": {"orgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "shortName": "talos", "dateUpdated": "2024-05-28T13:52:58.113Z"}, "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989", "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989"}, {"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1989"}], "credits": [{"lang": "en", "value": "Discovered by KPC of Cisco Talos."}]}, "adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-29072", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-28T15:36:04.553956Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:foxitsoftware:foxit_reader:*:*:*:*:*:*:*:*"], "vendor": "foxitsoftware", "product": "foxit_reader", "versions": [{"status": "affected", "version": "2024.2.0.25138"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-06-04T17:58:07.938Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:03:51.701Z"}, "title": "CVE Program Container", "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989", "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989", "tags": ["x_transferred"]}, {"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1989", "tags": ["x_transferred"]}]}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2024-29072", "assignerOrgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "state": "PUBLISHED", "assignerShortName": "talos", "dateReserved": "2024-05-03T19:29:27.157Z", "datePublished": "2024-05-28T13:52:58.113Z", "dateUpdated": "2024-05-28T13:52:58.113Z"}, "containers": {"cna": {"affected": [{"vendor": "Foxit", "product": "Foxit Reader", "versions": [{"version": "2024.2.0.25138", "status": "affected"}]}], "descriptions": [{"lang": "en", "value": "A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validation of the updater executable before executing it. A low privilege user can trigger the update action which can result in unexpected elevation of privilege."}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-295: Improper Certificate Validation", "type": "CWE", "cweId": "CWE-295"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH"}}], "providerMetadata": {"orgId": "b86d76f8-0f8a-4a96-a78d-d8abfc7fc29b", "shortName": "talos", "dateUpdated": "2024-05-28T13:52:58.113Z"}, "references": [{"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989", "name": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989"}, {"url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1989"}], "credits": [{"lang": "en", "value": "Discovered by KPC of Cisco Talos."}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-29072", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-28T15:36:04.553956Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:foxitsoftware:foxit_reader:*:*:*:*:*:*:*:*"], "vendor": "foxitsoftware", "product": "foxit_reader", "versions": [{"status": "affected", "version": "2024.2.0.25138"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-28T15:37:43.611Z"}, "title": "CISA ADP Vulnrichment"}]}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validation of the updater executable before executing it. A low privilege user can trigger the update action which can result in unexpected elevation of privilege."}, {"lang": "es", "value": "Existe una vulnerabilidad de escalada de privilegios en Foxit Reader 2024.2.0.25138. La vulnerabilidad se produce debido a una validaci\u00f3n de certificaci\u00f3n inadecuada del ejecutable del actualizador antes de ejecutarlo. Un usuario con privilegios bajos puede desencadenar la acci\u00f3n de actualizaci\u00f3n, lo que puede resultar en una elevaci\u00f3n inesperada de privilegios."}], "id": "CVE-2024-29072", "lastModified": "2024-06-10T18:15:30.110", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.5, "impactScore": 6.0, "source": "talos-cna@cisco.com", "type": "Secondary"}]}, "published": "2024-05-28T14:15:12.493", "references": [{"source": "talos-cna@cisco.com", "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989"}, {"source": "talos-cna@cisco.com", "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-1989"}], "sourceIdentifier": "talos-cna@cisco.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-295"}], "source": "talos-cna@cisco.com", "type": "Primary"}]}

{}