PT-2025-34315 · Foxit · Foxit Pdf Reader

Soiax

Published

2025-05-20

Updated

2025-09-03

CVE-2025-9323

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader (affected versions not specified)

Description Foxit PDF Reader contains a flaw in the parsing of JP2 files due to insufficient validation of user-supplied data. This can lead to a read past the end of an allocated object, potentially disclosing sensitive information. User interaction is required, such as visiting a malicious page or opening a malicious file. An attacker could potentially leverage this issue, in conjunction with other vulnerabilities, to execute arbitrary code.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

BDU:2025-10676

CVE-2025-9323

ZDI-25-869

Affected Products

Foxit Pdf Reader

PT-2025-34315 · Foxit · Foxit Pdf Reader

CVE-2025-9323

Weakness Enumeration

Related Identifiers

Affected Products

References · 7