Security Flaw in Foxit PDF Editor Compromises Document Integrity
CVE-2025-55311

6.5MEDIUM

Key Information:

Vendor: Foxit
Status: Foxit PDF Editor
Vendor: CVE Published:; 11 December 2025

What is CVE-2025-55311?

A security flaw in Foxit PDF and Editor for Windows and macOS allows maliciously crafted PDFs to manipulate annotation content using JavaScript. This vulnerability enables attackers to alter modification status and bypass digital signature verification, potentially misleading users about the authenticity of signed PDF documents. Such exploitation could significantly undermine the trustworthiness of digital documents.

References

https://www.foxit.com/support/security-bulletins.html

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 11, 2025
Vulnerability Reserved
Aug 12, 2025

JSON