CVE-2025-0902
Published: 11 February 2025
Summary
CVE-2025-0902 is a high-severity Out-of-bounds Read (CWE-125) vulnerability in Pdf-Xchange Pdf-Xchange Editor. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Drive-by Compromise (T1189); ranked at the 36.1th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly addresses the lack of proper validation of user-supplied XPS data during parsing that causes the out-of-bounds read.
Requires timely identification, reporting, and correction of the specific flaw in PDF-XChange Editor's XPS parsing to prevent exploitation.
Implements memory safeguards that mitigate out-of-bounds reads by protecting against unauthorized memory access in the affected process.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Out-of-bounds read in XPS parser enables client-side exploitation via malicious file or drive-by webpage visit, directly supporting drive-by compromise, client execution exploitation, and malicious file user execution.
NVD Description
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a…
more
malicious page or open a malicious file. The specific flaw exists within the parsing of XPS files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-25405.
Deeper analysisAI
CVE-2025-0902 is an out-of-bounds read information disclosure vulnerability in the XPS file parsing component of PDF-XChange Editor. The flaw arises from a lack of proper validation of user-supplied data during XPS file processing, resulting in a read past the end of an allocated object. This issue affects installations of PDF-XChange Editor and was disclosed as ZDI-CAN-25405, with a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) and mapped to CWE-125.
Remote attackers can exploit this vulnerability by inducing a target user to visit a malicious webpage or open a malicious XPS file, as user interaction is required. Exploitation enables disclosure of sensitive information from the affected process. When combined with other vulnerabilities, attackers can achieve arbitrary code execution in the context of the current process.
The Zero Day Initiative advisory ZDI-25-072 provides further details on this vulnerability and is available at https://www.zerodayinitiative.com/advisories/ZDI-25-072/. Security practitioners should review this advisory for recommended mitigations and any available patches.
Details
- CWE(s)