CVE-2025-13941

Summary

A local privilege escalation vulnerability exists in the Foxit PDF Reader/Editor Update Service. During plugin installation, incorrect file system permissions are assigned to resources used by the update service. A local attacker with low privileges could modify or replace these resources, which are later executed by the service, resulting in execution of arbitrary code with SYSTEM privileges.

Affected Software

VendorProductVersion RangeStatus
Foxit Software Inc.Foxit PDF ReaderVersions 2025.2.1 and earlieraffected
Foxit Software Inc.Foxit PDF ReaderVersions 14.0.1 and earlieraffected
Foxit Software Inc.Foxit PDF ReaderVersions 13.2.1 and earileraffected
Foxit Software Inc.Foxit PDF EditorVersions 2025.2.1 and earlieraffected
Foxit Software Inc.Foxit PDF EditorVersions 14.0.1 and earlieraffected
Foxit Software Inc.Foxit PDF EditorVersions 13.2.1 and earileraffected

Weaknesses

  • CWE-732: CWE-732: Incorrect Permission Assignment for Critical Resource

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References