6.1

CVE-2026-57258

Foxit PDF Editor/Reader Crash via Malformed PRC 3D Stream

The PRC file header parsing logic trusts the constructed file structure description information, assumes that the underlying array contains elements and reads them, leading to out-of-bounds reads and application crashes.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
FoxitPdf Editor Version <= 13.2.4.24048
   MicrosoftWindows Version-
FoxitPdf Editor Version >= 14.0.0.33046 <= 14.0.4.33508
   MicrosoftWindows Version-
FoxitPdf Editor Version >= 2023.1.0.15510 <= 2023.3.0.23028
   MicrosoftWindows Version-
FoxitPdf Editor Version >= 2024.1.0.23997 <= 2024.4.1.27687
   MicrosoftWindows Version-
FoxitPdf Editor Version >= 2025.1.0.27937 <= 2025.3.0.35737
   MicrosoftWindows Version-
FoxitPdf Editor Version >= 2026.1.0.36452 <= 2026.1.1.36485
   MicrosoftWindows Version-
FoxitPdf Reader Version <= 2026.1.1.36485
   MicrosoftWindows Version-
FoxitPdf Editor Version <= 13.2.3.63444
   ApplemacOS Version-
FoxitPdf Editor Version >= 14.0.0.33046 <= 14.0.3.69295
   ApplemacOS Version-
FoxitPdf Editor Version >= 2023.1.0.55583 <= 2023.3.0.63083
   ApplemacOS Version-
FoxitPdf Editor Version >= 2024.1.0.63682 <= 2024.4.1.66479
   ApplemacOS Version-
FoxitPdf Editor Version >= 2025.1.0.66692 <= 2025.3.0.69570
   ApplemacOS Version-
FoxitPdf Editor Version >= 2026.1.0.70169 <= 2026.1.1.70276
   ApplemacOS Version-
FoxitPdf Reader Version <= 2026.1.1.70276
   ApplemacOS Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.11% 0.016
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
14984358-7092-470d-8f34-ade47a7658a2 6.1 1.8 4.2
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://www.foxit.com/support/security-bulletins.html
Vendor Advisory