CVE-2025-9326: 
Foxit PDF Reader vulnerability analysis and mitigation

CVE-2025-9326 is a remote code execution vulnerability discovered in Foxit PDF Reader affecting versions up to 2025.1.0.27937 on Windows and macOS platforms. The vulnerability was discovered and disclosed on September 2, 2025, and was assigned a CVSS 3.0 base score of 7.8 (High severity) (NVD, ZDI).

The vulnerability exists within the parsing of PRC files and stems from an Out-of-bounds Read (CWE-125) issue. The specific flaw results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. This vulnerability requires user interaction, specifically that the target must visit a malicious page or open a malicious file (ZDI, Foxit Security Bulletin).

An attacker can leverage this vulnerability to execute arbitrary code in the context of the current process on affected installations of Foxit PDF Reader. The vulnerability has been rated as Important with a CVSS score of 7.8, indicating high potential impact on confidentiality, integrity, and availability (ZDI).

Foxit has released version 2025.2 of both Foxit PDF Reader and Foxit PDF Editor to address this vulnerability. Users are advised to update their applications to the latest version either through the application's built-in update feature (Help > About > Check for Update) or by downloading the latest version from the Foxit website (Foxit Security Bulletin).