CVE-2024-9251: 
Foxit PDF Reader vulnerability analysis and mitigation

CVE-2024-9251 is a Use-After-Free Information Disclosure vulnerability affecting Foxit PDF Reader. The vulnerability was discovered and reported on June 28, 2024, and publicly disclosed on September 26, 2024. This security flaw affects multiple versions of Foxit PDF Reader and Foxit PDF Editor on Windows platforms, including versions up to 2024.2.3.25184 (Foxit Bulletin, ZDI Advisory).

The vulnerability exists within the handling of Annotation objects in Foxit PDF Reader. The specific flaw results from the lack of validating the existence of an object prior to performing operations on the object. The vulnerability has been assigned a CVSS v3.1 base score of 7.8 HIGH (CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) by NIST NVD, while Zero Day Initiative rates it with a CVSS score of 3.3 LOW (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N). The vulnerability is classified as CWE-416 (Use After Free) (NVD).

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. The impact is heightened as attackers can potentially leverage this vulnerability in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process (ZDI Advisory).

Foxit has released security updates to address this vulnerability. Users are advised to update their applications to the latest versions. For Version 2023.1 and higher, users can update by clicking on 'Help' > 'About Foxit PDF Reader' or 'About Foxit PDF Editor' > 'Check for Update'. Alternatively, users can download the updated version directly from the Foxit website (Foxit Bulletin).