Primary

Context

Foxit PDF Reader and Foxit PDF Editor Memory Corruption Vulnerability in PRC Data Handling

Vulnerability

A memory corruption vulnerability has been identified in Foxit PDF Reader and Foxit PDF Editor. This issue arises from inadequate bounds checking when processing PRC data in 3D annotations. Opening a PDF file with malformed or specially crafted PRC content can lead to out-of-bounds memory access, causing memory corruption.

Impact

Exploitation of this vulnerability can result in memory corruption, which may be leveraged to execute arbitrary code.

Remediation

Users can update to Foxit PDF Reader 2025.3 or Foxit PDF Editor 2025.3/14.0.2/13.2.2. Instructions for updating are available on the Foxit website.

Added: Dec 19, 2025, 7:19 AM

Updated: Dec 19, 2025, 7:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

7.7

relevance

1.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

7.7

relevance

1.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Foxit PDF Reader and Foxit PDF Editor Memory Corruption Vulnerability in PRC Data Handling

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating