New versions of Foxit PDF Editor and PDF Reader for macOS and Windows have been released that are protected against various attacks.

Attackers can inject prepared PDF files into victims' systems and use security vulnerabilities in Foxit PDF Editor and PDF Reader to bring and execute malicious code on systems. Security updates are available for download.

Multiple vulnerabilities

A classification of the threat level of the security vulnerabilities (CVE-2024-28888, CVE-2024-38393, CVE-2024-41605) on the NIST website is currently pending. The emergency team at the Federal Office for Information Security (BIS) CERT Bund classifies the threat as high.

As can be seen from the according security bulletin on the Foxit website, PDF Editor and PDF Reader on macOS and Windows are specifically at risk. It is currently not known whether there have already been attacks.

Effects of attacks

The developers explain that opening PDF files prepared by attackers triggers a memory error (use after free), allowing malicious code to reach systems. They also say that attackers can attack the update process of the PDF applications in order to gain higher rights.

The new versions Foxit PDF Editor 2024.3 and PDF Reader 2024.3 and PDF Editor 13.1.4 for macOS are protected. According to the developers, all previous versions are vulnerable.

Users can update the applications to the latest versions by following one of the methods below:

• (For Version 2023.1 and higher) In Foxit PDF Reader or Foxit PDF Editor, click on Help > About Foxit PDF Reader or About Foxit PDF Editor > Check for Update to update to the latest version.
• Click here to download the updated version of Foxit PDF Reader from UpdateStar.
• Click here to download the updated version of Foxit PDF Editor from UpdateStar.