Primary

Context

Foxit PDF Reader PRC File Parsing Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability

Patched

An out-of-bounds read vulnerability allowing information disclosure has been identified in Foxit PDF Reader. This issue arises in the PRC file parsing process, where improper validation of user-supplied data can lead to reading beyond the limits of an allocated object. As a result, remote attackers could exploit this vulnerability to access sensitive information on affected systems. Exploitation requires user interaction, such as opening a malicious PRC file or visiting a harmful webpage.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure.

Remediation

Foxit has released a security update to address this vulnerability. Users can download the latest version of Foxit PDF Reader from the Foxit website or use the built-in update feature. For more information, visit the Foxit Security Bulletins page.

Added: Sep 2, 2025, 9:31 PM

Updated: Sep 2, 2025, 9:31 PM

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

8.4

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Foxit PDF Reader PRC File Parsing Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Foxit PDF Reader

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating