CVE-2025-66498

Foxit PDF Reader 3D Annotation Out-of-Bounds Memory Access Vulnerability

CVSS 5.3 MEDIUMEPSS 0.2%CWE-125

A memory corruption vulnerability exists in the 3D annotation handling of Foxit PDF Reader due to insufficient bounds checking when parsing U3D data. When opening a PDF file containing malformed or specially crafted PRC content, out-of-bounds memory access may occur, resulting in memory corruption.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Produtos afetados

Foxit Software Inc. · Foxit PDF Editor Foxit Software Inc. · Foxit PDF Reader

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.foxit.com/support/security-bulletins.html