Unrated severityNVD Advisory· Published Dec 19, 2025· Updated Dec 19, 2025

Foxit PDF Reader 3D Annotation Out-of-Bounds Memory Access Vulnerability

CVE-2025-66498

Description

A memory corruption vulnerability exists in the 3D annotation handling of Foxit PDF Reader due to insufficient bounds checking when parsing U3D data. When opening a PDF file containing malformed or specially crafted PRC content, out-of-bounds memory access may occur, resulting in memory corruption.

Affected products

Foxit/Pdf Readerllm-fuzzy
Foxit Software Inc./Foxit PDF Editorv5
Range: Versions 2025.2.1 and earlier
Foxit Software Inc./Foxit PDF Readerv5
Range: Versions 2025.2.1 and earlier

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.foxit.com/support/security-bulletins.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000