Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability (CVE-2024-9255) – Critical

2024-11-29

:

This article describes a critical vulnerability (CVE-2024-9255) in Foxit PDF Reader that allows remote attackers to execute malicious code on a victim’s computer by tricking them into opening a specially crafted PDF file.

Vulnerability Details:

Platform: Foxit PDF Reader (version not specified)
Vulnerability: Annotation Use-After-Free Remote Code Execution
Severity: Critical (CVSS score likely high)
Date: November 22, 2024 (published)

What Undercode Says:

This vulnerability is severe and allows attackers to take complete control of a vulnerable system. Users of Foxit PDF Reader should update to the latest version as soon as possible, which is likely to contain a fix for this issue.

Additional Notes:

The specific details of the vulnerability are not publicly available to prevent attackers from exploiting it.
It is recommended to avoid opening untrusted PDF files.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top