Potential Security Risks PDF Reader/Editor
Incident Report for Foxit
This incident has been resolved.
Posted May 22, 2024 - 07:37 PDT
We wanted to bring to your attention recent reports about potential security risks related to Foxit PDF Editor & Reader. Some articles have discussed flaws and exploits that could be present in "specially crafted PDF" documents containing malware.

Upon opening one of these documents, you may encounter a dialog box warning you about potential security risks associated with certain features in the document. This behavior is common among PDF applications from various vendors, as the PDF standard allows code fragments to be executed when PDF documents are opened.

If you choose to enable these features, a second dialog box may appear, cautioning you that additional commands are about to be executed. The identified vulnerability lies in the default option ("Open") presented to customers, which could potentially lead to executing untrusted code and adverse consequences if selected.

We are actively working on a fix for this issue, which we anticipate will be included in the 2024.2.2 update. We want to assure you that your security and safety are our top priorities, and we are committed to providing you with a secure and reliable experience with our products.
Please note that this dialog box has always been a part of the application, and the default option to maximize security is being worked on for a future update. In the meantime, we recommend selecting the "NO" option if you encounter this dialog box to ensure your security remains protected. It is also recommend that you never execute embedded code from untrusted sources, regardless of the software product.

If you have any further questions or concerns regarding this matter, please do not hesitate to reach out to our support team for assistance.
Posted May 21, 2024 - 18:17 PDT