Foxit PDF Reader and Foxit PDF Editor代碼執(zhí)行漏洞(CNVD-2024-25648)

 漏洞資訊     |      2024-06-12

一、漏洞分析

公開日期:2024-06-04

危害級(jí)別:高 (AV:N/AC:L/Au:N/C:P/I:P/A:P)

二、漏洞描述

Foxit PDF Reader是中國福昕(Foxit)公司的一款PDF閱讀器。Foxit PDF Editor是中國福昕(Foxit)公司的一款PDF編輯器。

Foxit PDF Reader and Foxit PDF Editor存在代碼執(zhí)行漏洞,攻擊者可利用該漏洞在系統(tǒng)上執(zhí)行任意代碼。

漏洞類型:通用型漏洞

三、影響產(chǎn)品

Foxit Foxit PDF Reader <=2023.3.0.23028

Foxit Foxit PDF Editor >=2023.*,<=2023.3.0.23028

Foxit Foxit PDF Editor >=13.*,<=13.0.1.21693

Foxit Foxit PDF Editor >=12.*,<=12.1.4.15400

Foxit Foxit PDF Editor >=11.*,<=11.2.8.53842

Foxit Foxit PDF Editor <=10.1.12.37872

Foxit Foxit PDF Editor for Mac >=13.*,<=13.0.1.61866

Foxit Foxit PDF Editor for Mac >=12.*,<=12.1.2.55366

Foxit Foxit PDF Editor for Mac <=11.1.6.0109

Foxit Foxit PDF Editor for Mac >=2023.*,<=2023.3.0.63083

四、漏洞解決方案

廠商已發(fā)布了漏洞修復(fù)程序,請(qǐng)及時(shí)關(guān)注更新:

https://www.foxit.com/support/security-bulletins.html