← volver
CVE-2026-5940

Foxit PDF Editor/Reader Annotation Use-After-Free Remote Code Execution Vulnerability

CVSS 7.8 HIGHEPSS 0.2%CWE-416
Calling a function that triggers a UI refresh after removing comments via a script may access an invalidated object, leading to program crashes.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Productos afectados
Foxit Software Inc. · Foxit PDF EditorFoxit Software Inc. · Foxit PDF Reader

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.foxit.com/support/security-bulletins.html