CVE-2024-29072 Information

Description

A privilege escalation vulnerability exists in the Foxit Reader 2024.2.0.25138. The vulnerability occurs due to improper certification validation of the updater executable before executing it. A low privilege user can trigger the update action which can result in unexpected elevation of privilege.

Reference

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1989