← volver
CVE-2026-57258

Foxit PDF Editor/Reader Crash via Malformed PRC 3D Stream

CVSS 6.1 MEDIUMEPSS 0.1%CWE-125
Vexday Risk Score
13Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 6.1EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
08 jul 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The PRC file header parsing logic trusts the constructed file structure description information, assumes that the underlying array contains elements and reads them, leading to out-of-bounds reads and application crashes.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H