CNNVD-202512-2184 Information
Dec 11, 2025
cve
CNNVD ID
CNNVD-202512-2184
Related CVE
- CNNVD Published: 2025-12-11
Description (Chinese)
Foxit PDF Reader和Foxit PDF Editor都是中国福昕(Foxit)公司的产品。Foxit PDF Reader是一款PDF阅读器。Foxit PDF Editor是一款PDF编辑器。 Foxit PDF Reader和Foxit PDF Editor 2025.2.1之前版本存在安全漏洞,该漏洞源于OCG状态属性未包含在数字签名计算缓冲区中,可能导致签名欺骗。
Description (English)
Foxit PDF Reader and Foxit PDF Editor are products of Foxit China. Foxit PDF Reader is a PDF reader. Foxit PDF Editor is a PDF editor. The previous version of Foxit PDF Reader and Foxit PDF Editor 2025.2.1 had a security loophole, which stemmed from the fact that the OCG status attribute was not included in the digital signature calculation buffer zone and could lead to signature fraud.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
福昕
Published
2025-12-11
Last Modified
2026-02-24
References
https://www.foxit.com/support/security-bulletins.html
Patch
https://www.foxit.com/support/security-bulletins.html
Share on: