CNNVD-202509-123 Information

CNNVD ID

CNNVD-202509-123

Related CVE

CVE-2025-9326

• CNNVD Published: 2025-09-02

Description (Chinese)

Foxit PDF Reader是中国福昕（Foxit）公司的一款PDF阅读器。 Foxit PDF Reader存在缓冲区错误漏洞，该漏洞源于解析PRC文件时未验证用户输入导致越界读取，可能导致远程代码执行。

Description (English)

Foxit PDF Reader is a PDF reader for Foxit. Foxit PDF Reader has a buffer zone error loophole, which arises from the failure to verify user input at the time the PRC file is deciphered, leading to cross-border reading, which may lead to remote code execution.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

福昕

Published

2025-09-02

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-866/ https://www.foxit.com/support/security-bulletins.html https://nvd.nist.gov/vuln/detail/CVE-2025-9326

Patch

https://www.foxit.com/support/security-bulletins.html