CVE-2024-12752: 
Foxit PDF Reader vulnerability analysis and mitigation

A memory corruption vulnerability (CVE-2024-12752) was discovered in Foxit PDF Reader's AcroForm handling functionality. The vulnerability was disclosed on December 30, 2024, affecting installations of Foxit PDF Reader. This security flaw requires user interaction, specifically opening a malicious file or visiting a malicious page, to be exploited (ZDI Advisory, Foxit Bulletin).

The vulnerability exists within the handling of AcroForms in Foxit PDF Reader. The specific issue stems from the lack of proper validation of user-supplied data, which can result in a memory corruption condition. The vulnerability has been assigned a CVSS v3.0 base score of 7.8 (HIGH) with the vector string: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. The flaw is classified under CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer) (ZDI Advisory).

If successfully exploited, this vulnerability allows attackers to execute arbitrary code in the context of the current process on affected installations of Foxit PDF Reader. The high CVSS score indicates potential severe impacts on system confidentiality, integrity, and availability (ZDI Advisory).

Foxit has released security updates to address this vulnerability. Users are advised to update their Foxit PDF Reader installations to the latest version. The fix is included in Foxit PDF Reader 2024.4 and Foxit PDF Editor 2024.4/13.1.5 (Foxit Bulletin).