HIGHCVE-2026-5943Published Modified CNA Foxit
CVE-2026-5943: Foxit PDF Editor/Reader AcroForm Annotation Use-After-Free Remote Code Execution Vulnerability
Document structural anomalies caused inconsistencies between page element relationships and internal index states. When scripts triggered document modifications, object reference validity was not properly maintained, leading to a crash when accessing an invalid pointer during page information queries.
Metrics
- CVSS v3.1
- 7.8
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 2
Affected packages
- Foxit Software Inc. / Foxit PDF EditorVersions 2026.1 and earlier · Versions 14.0.3 and earlier · Versions 13.2.3 and earlier
- Foxit Software Inc. / Foxit PDF ReaderVersions 2026.1 and earlier
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HReferences