Foxit PDF and Editor NULL Pointer Dereference Vulnerability Allowing Arbitrary Code Execution
Vulnerability
A NULL pointer dereference vulnerability has been identified in Foxit PDF and Foxit PDF Editor for Windows and macOS, affecting versions prior to 13.2 and 2025 prior to 2025.2. This vulnerability allows arbitrary code execution when the applications process specially crafted PDF files. The issue arises from inadequate management of memory allocation failures after an extremely large value is assigned to a form field's charLimit property via JavaScript. This can lead to memory corruption, potentially enabling an attacker to execute arbitrary code by convincing a user to open a malicious PDF file.
Impact
Exploitation of this vulnerability can lead to arbitrary code execution on the affected system.
Remediation
Users can update to Foxit PDF Reader 2025.2.1 or Foxit PDF Editor 2025.2.1/14.0.1/13.2.1. For Foxit PDF Editor or Reader for Mac, the same version updates apply. Instructions for updating or downloading the latest versions are available on the Foxit website.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.