Foxit PDF and Editor Exploit

HIGH (7.8)
cwe-94arbitrary-code-executionfoxitmacospdf-editorpdf-processingrcewindows

Threat Intelligence

Low Risk
EPSS Score: 0.02% chance of exploitation (percentile: 5%)
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

Foxit PDF and Editor is a software used for creating, editing, and viewing PDF files. The vulnerability discovered in this software allows attackers to execute arbitrary code on the user's system by processing crafted PDF files. This can lead to potential security breaches if users open maliciously created PDFs.

Am I affected?

You're affected if you use An. Affected versions: 13.2, 2025.2

How to fix

To fix this issue, you can follow these steps:

  1. Upgrade to Foxit PDF and Editor 13.2 or later for Windows and macOS 2025.2 or later.
  2. For Windows: Download from www.foxit.com > Support > Security Bulletins

  3. For macOS: Download from www.foxit.com > Support > Security Bulletins

  4. Immediate mitigations:

  5. Avoid opening maliciously created PDF files.
  6. Use an antivirus program to scan for potential threats.

References