What is the CVSS score of CVE-2026-5943?

CVE-2026-5943 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Foxit PDF Reader are affected by CVE-2026-5943?

CVE-2026-5943 is a use-after-free vulnerability in Foxit PDF Reader and Foxit PDF Editor that allows local attackers to execute arbitrary code or crash the application through malicious PDF…

Foxit PDF Reader CVE-2026-5943

EUVD-2026-25829 HIGH

Use After Free (CWE-416)

2026-04-27 Foxit

Denial Of Service Use After Free Memory Corruption

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 27, 2026 - 12:28 vuln.today

v2 (cvss_changed)

Re-analysis Queued

Apr 27, 2026 - 12:22 vuln.today

cvss_changed

Analysis Generated

Apr 27, 2026 - 12:01 vuln.today

EUVD ID Assigned

Apr 27, 2026 - 11:30 euvd

EUVD-2026-25829

Analysis Generated

Apr 27, 2026 - 11:30 vuln.today

CVE Published

Apr 27, 2026 - 11:00 nvd

HIGH 7.8

DescriptionNVD

Document structural anomalies caused inconsistencies between page element relationships and internal index states. When scripts triggered document modifications, object reference validity was not properly maintained, leading to a crash when accessing an invalid pointer during page information queries.

AnalysisAI

Use-after-free in Foxit PDF Reader and Foxit PDF Editor allows local attackers to execute arbitrary code or crash the application via specially crafted PDF documents. When scripts modify document structures, the software fails to maintain valid object references during page information queries, enabling pointer dereference of freed memory. …

RemediationAI

Within 24 hours: Identify and inventory all Foxit PDF Reader and Foxit PDF Editor deployments across the organization; notify users to avoid opening PDF files from untrusted sources. Within 7 days: Implement application whitelisting to restrict execution of Foxit processes, or disable Foxit scripting features via configuration if available; evaluate alternative PDF readers without this vulnerability. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-5943 vulnerability details – vuln.today

Back

Foxit PDF Reader CVE-2026-5943

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code