Primary

Context

Foxit PDF Reader PRC File Parsing Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability

Patched

An out-of-bounds read vulnerability allowing information disclosure has been identified in Foxit PDF Reader. This issue arises in the PRC file parsing process, where improper validation of user-supplied data can lead to reading beyond the allocated buffer's end. As a result, remote attackers could exploit this vulnerability to access sensitive information on affected systems. User interaction is required, as the target must open a malicious PRC file or visit a harmful webpage.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure.

Remediation

Foxit has released a security update to address this vulnerability. Users can download the latest version of Foxit PDF Reader from the Foxit website or use the built-in update feature. For Foxit PDF Editor, a similar update is available.

Added: Sep 2, 2025, 9:21 PM

Updated: Sep 2, 2025, 9:21 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

0.6

exploitability

4.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Foxit PDF Reader PRC File Parsing Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Foxit PDF Reader

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating