HIGHCVE-2026-3780Published Modified CNA Foxit
CVE-2026-3780: Foxit PDF Editor/Reader Installer Uncontrolled Search Path Privilege Escalation
The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-writable directories, allowing a local attacker to place malicious binaries with the same names and have them loaded or executed instead of the legitimate system files, resulting in local privilege escalation.
Metrics
- CVSS v3.1
- 7.3
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 2
Affected packages
- Foxit Software Inc. / Foxit PDF ReaderVersions 2025.3 and earlier
- Foxit Software Inc. / Foxit PDF EditorVersions 2025.3 and earlier · Versions 14.0.2 and earlier
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HReferences