CVE-2022-37385: 
Foxit PDF Reader vulnerability analysis and mitigation

This vulnerability (CVE-2022-37385) affects Foxit PDF Reader version 11.2.1.53537. The vulnerability allows remote attackers to execute arbitrary code on affected installations. User interaction is required to exploit this vulnerability, as the target must visit a malicious page or open a malicious file (Zero Day Initiative).

The specific flaw exists within the handling of Doc objects. The issue results from the lack of validating the existence of an object prior to performing operations on the object. The vulnerability has been assigned a CVSS v3.1 Base Score of 7.8 (HIGH) with the vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H (NVD).

An attacker can leverage this vulnerability to execute code in the context of the current process, potentially gaining control over the affected system. The vulnerability affects confidentiality, integrity, and availability of the system, as indicated by the CVSS scoring (Zero Day Initiative).

Foxit has issued an update to correct this vulnerability. Users should update their installations to the latest version through the vendor's official website or through the application's update mechanism (Zero Day Initiative, Foxit Security Bulletins).