CNNVD-202506-3234 Information

CNNVD ID

CNNVD-202506-3234

Related CVE

CVE-2025-6648

• CNNVD Published: 2025-06-25

Description (Chinese)

PDF-XChange Editor是PDF-XChange公司的一个运行在 Microsoft Windows 系统中的 PDF 文件查看软件。 PDF-XChange Editor存在缓冲区错误漏洞，该漏洞源于解析U3D文件时存在越界读取问题，可能导致信息泄露。

Description (English)

PDF-XChange Editor is a PDF file viewer run by PDF-XChange in Microsoft Windows. PDF-XChange Editor had an error loophole in the buffer zone, which stemmed from cross-border access problems in the analysis of U3D documents, which could lead to information leaks.

Hazard Level

Critical

Vulnerability Type

缓冲区错误

Affected Vendor

PDF-XChange

Published

2025-06-25

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-433/ https://www.pdf-xchange.com/support/security-bulletins.html https://nvd.nist.gov/vuln/detail/CVE-2025-6648

Patch

https://www.pdf-xchange.com/product/pdf-xchange-editor