| |
Vulnerability CVE-2024-29072
Published: 2024-05-28
| Description: |
A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validation of the updater executable before executing it. A low privilege user can trigger the update action which can result in unexpected elevation of privilege. |
Type:
CWE-295 (Certificate Issues)
References: |
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
