Severity by source
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Lifecycle Timeline
4DescriptionCVE.org
Flaws in page lifecycle management allow document structure changes to desynchronize internal component states, causing subsequent operations to access invalidated objects and crash the program.
AnalysisAI
Use-after-free vulnerability in Foxit PDF Editor and PDF Reader allows local attackers to crash the application by manipulating document page lifecycle events, causing internal component states to desynchronize and subsequent operations to reference invalidated memory objects. Attack requires user interaction to open a malicious PDF file and does not enable information disclosure or code execution; impact is denial of service with CVSS 5.5 (medium severity). No public exploit code or active exploitation confirmed at time of analysis.
Technical ContextAI
This vulnerability stems from improper management of object lifecycles within the PDF document processing engine (CWE-416: Use After Free). When Foxit's page lifecycle handler processes structural changes to a PDF document-such as page reordering, deletion, or dynamic content updates-internal component state tracking fails to synchronize with the modified document structure. This desynchronization causes the application to maintain stale pointers or references to PDF objects that have been freed or invalidated. Subsequent operations, such as rendering, annotation processing, or form field handling, dereference these invalid references, triggering memory access violations and application crashes. The vulnerability affects both Foxit PDF Editor (full-featured desktop editor) and Foxit PDF Reader (document viewer), as both share common PDF parsing and lifecycle management libraries.
RemediationAI
Check Foxit's official security bulletins at https://www.foxit.com/support/security-bulletins.html for the specific patched version of Foxit PDF Editor and PDF Reader that addresses CVE-2026-5942, then upgrade both products to that patched release. Until patching is available or deployed, implement defense-in-depth controls: restrict opening of PDF files from untrusted sources (disable external document downloads in email clients, block PDF execution from web browsers in sandboxed environments), disable JavaScript execution within PDF documents if business requirements permit, and monitor for application crashes or unexpected terminations of Foxit processes as an indicator of exploitation attempts. If patching is delayed, consider running Foxit products within OS-level sandboxes (Windows Sandbox, macOS sandbox, or containers) to isolate crashes and prevent system-wide impact.
More in Foxit Pdf Editor
View allUse-after-free memory corruption in Foxit PDF Reader and Foxit PDF Editor lets a crafted PDF containing JavaScript trigg
Use-after-free memory corruption in Foxit PDF Reader and Foxit PDF Editor (versions 2026.1.1/14.0.4 and earlier) allows
Denial-of-service (and potential memory-corruption) in Foxit PDF Editor (≤14.0.4 / ≤13.2.4 / ≤2026.1.1) and Foxit PDF Re
Denial-of-service in Foxit PDF Reader and Foxit PDF Editor (versions 2026.1.1 and earlier) occurs when a victim opens a
Memory corruption in Foxit PDF Reader and Foxit PDF Editor (versions 2026.1.1, 13.2.4, 14.0.4 and earlier) allows attack
Memory corruption in Foxit PDF Reader and Foxit PDF Editor allows a crafted PDF to trigger a use-after-free through the
Use-after-free memory corruption in Foxit PDF Reader (2026.1.1 and earlier) and Foxit PDF Editor (through 14.0.4, 13.2.4
Memory corruption in Foxit PDF Reader (≤2026.1.1) and Foxit PDF Editor (≤14.0.4, ≤13.2.4, and ≤2026.1.1) allows an attac
Memory-corruption (buffer overflow) in Foxit PDF Reader and Foxit PDF Editor arises when the digital-signature plugin pr
Memory-corruption crash (and potential code execution) in Foxit PDF Reader and Foxit PDF Editor occurs when a PDF's embe
Use-after-free memory corruption in Foxit PDF Editor and Foxit PDF Reader allows a crafted PDF to crash the application
Denial of service in Foxit PDF Editor and Foxit PDF Reader arises when the application renders a PDF containing cloud-st
Same weakness CWE-416 – Use After Free
View allSame technique Memory Corruption
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-25828