CVE-2025-64086 | THREATINT

Description

A NULL pointer dereference vulnerability in the util.readFileIntoStream component of PDF-XChange Editor v10.7.3.401 allows attackers to cause a Denial of Service (DoS) via a crafted input.

PUBLISHED Reserved 2025-10-27 | Published 2025-12-09 | Updated 2025-12-11 | Assigner mitre

References

www.pdf-xchange.com/

jeroscope.com/advisories/2025/jero-2025-011/

cve.org (CVE-2025-64086)

nvd.nist.gov (CVE-2025-64086)

Download JSON