Primary

Context

Foxit PDF Reader and Foxit PDF Editor Memory Corruption Vulnerability in 3D Annotation Handling

Vulnerability

Patched

A memory corruption vulnerability has been identified in Foxit PDF Reader and Foxit PDF Editor. This issue arises from inadequate bounds checking when processing PRC data in 3D annotations. Opening a PDF file that contains malformed or specially crafted PRC content can lead to out-of-bounds memory access, causing memory corruption.

Impact

Exploitation of this vulnerability can result in memory corruption, which may be leveraged to execute arbitrary code.

Remediation

Users can update to the latest versions of Foxit PDF Reader or Foxit PDF Editor. For Foxit PDF Reader, the updated version can be downloaded from the Foxit website or via the application's update feature. For Foxit PDF Editor, the latest version is also available on the Foxit website or through the application's update option.

Added: Dec 19, 2025, 7:20 AM

Updated: Dec 19, 2025, 7:20 AM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

10.0

exploitability

4.4

remediation

7.7

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

10.0

exploitability

4.4

remediation

7.7

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Foxit PDF Reader and Foxit PDF Editor Memory Corruption Vulnerability in 3D Annotation Handling

Vulnerability

Impact

Remediation

Affected Products

Foxit PDF Reader

Foxit PDF Editor

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating