CNNVD-202509-125 Information

CNNVD ID

CNNVD-202509-125

Related CVE

CVE-2025-9323

• CNNVD Published: 2025-09-02

Description (Chinese)

Foxit PDF Reader是中国福昕（Foxit）公司的一款PDF阅读器。 Foxit PDF Reader存在缓冲区错误漏洞，该漏洞源于解析JP2文件时未验证用户输入导致越界读取，可能导致信息泄露。

Description (English)

Foxit PDF Reader is a PDF reader for Foxit. Foxit PDF Reader had an error loophole in the buffer zone, which arose from the failure to verify user input at the time the JP2 file was deciphered, resulting in cross-border reading, which could lead to a leak of information.

Hazard Level

Critical

Vulnerability Type

缓冲区错误

Affected Vendor

福昕

Published

2025-09-02

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-869/ https://www.foxit.com/support/security-bulletins.html https://nvd.nist.gov/vuln/detail/CVE-2025-9323

Patch

https://www.foxit.com/support/security-bulletins.html