CVE-2025-32451

Name of the Vulnerable Software and Affected Versions: Foxit Reader version 2025.1.0.27937

Description: A memory corruption issue exists due to the use of an uninitialized pointer. A specially crafted Javascript code within a malicious PDF document can trigger this issue, potentially leading to arbitrary code execution. An attacker can exploit this by tricking a user into opening a malicious file or by having a user visit a specially crafted malicious site with the browser plugin extension enabled.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.