Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-55311

An issue was discovered in Foxit PDF and Editor for Windows and macOS before 13.2 and 2025 before 2025.2. A crafted PDF can use JavaScript to alter annotation content and subsequently clear the file's modification status via JavaScript interfaces. This circumvents digital signature verification by hiding document modifications, allowing an attacker to mislead users about the document's integrity and compromise the trustworthiness of signed PDFs.

Published

2025-12-11T16:16:25.507

Last Modified

2026-01-07T15:15:45.750

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses

Type: Primary
CWE-347
Type: Secondary
CWE-347

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	foxit	pdf_editor	≤ 13.1.7.63027	Yes
Application	foxit	pdf_editor	≤ 2023.3.0.63083	Yes
Application	foxit	pdf_editor	≤ 2024.4.1.66479	Yes
Application	foxit	pdf_editor	2025.1.0.66692	Yes
Application	foxit	pdf_reader	≤ 2025.1.0.66692	Yes
Operating System	apple	macos	-	No
Application	foxit	pdf_editor	≤ 13.1.7.23637	Yes
Application	foxit	pdf_editor	≤ 2023.3.0.23028	Yes
Application	foxit	pdf_editor	≤ 2024.4.1.27687	Yes
Application	foxit	pdf_editor	2025.1.0.27937	Yes
Application	foxit	pdf_reader	≤ 2025.1.0.27937	Yes
Operating System	microsoft	windows	-	No

References

https://www.foxit.com/support/security-bulletins.html Vendor Advisory ([email protected])