CVE-2025-0902
Published: 11 February 2025
Description
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XPS files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-25405.
Security Summary
CVE-2025-0902 is an out-of-bounds read information disclosure vulnerability in the XPS file parsing component of PDF-XChange Editor. The flaw arises from a lack of proper validation of user-supplied data during XPS file processing, resulting in a read past the end of an allocated object. This issue affects installations of PDF-XChange Editor and was disclosed as ZDI-CAN-25405, with a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) and mapped to CWE-125.
Remote attackers can exploit this vulnerability by inducing a target user to visit a malicious webpage or open a malicious XPS file, as user interaction is required. Exploitation enables disclosure of sensitive information from the affected process. When combined with other vulnerabilities, attackers can achieve arbitrary code execution in the context of the current process.
The Zero Day Initiative advisory ZDI-25-072 provides further details on this vulnerability and is available at https://www.zerodayinitiative.com/advisories/ZDI-25-072/. Security practitioners should review this advisory for recommended mitigations and any available patches.
Details
- CWE(s)