Foxit PDF Reader Annotation Use-After-Free Vulnerability (CVE-2024-9251) – Critical

2024-11-29

Platform: Foxit PDF Reader
Version: Not specified in this source
Vulnerability: Annotation Use-After-Free
Severity: Critical
Date: November 22, 2024 (Published by NIST)

What Undercode Says:

A critical vulnerability (CVE-2024-9251) has been identified in Foxit PDF Reader that allows attackers to potentially disclose sensitive information on affected systems. This vulnerability exists due to improper handling of Annotation objects within the software.

An attacker could exploit this vulnerability by tricking a user into opening a specially crafted PDF file. While the details of exploitation aren’t publicly available, it’s possible this vulnerability could be used in conjunction with other vulnerabilities to execute malicious code.

It is critical that Foxit PDF Reader users update their software to the latest version as soon as possible to mitigate this risk.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top