Na1 Foxitesign Foxit Com
Monthly
Insecure direct object reference in Foxit eSign's signing invitation acceptance process allows authenticated attackers to forge document signatures by manipulating object identifiers. Attackers with low-level privileges can access high-sensitivity resources and modify signing workflows without proper authorization, potentially compromising document integrity and authenticity in electronic signature workflows. EPSS score of 0.03% (8th percentile) indicates low observed exploitation probability, with no public exploit code or active exploitation confirmed at time of analysis.
Insecure direct object reference in Foxit eSign's signing invitation acceptance process allows authenticated attackers to forge document signatures by manipulating object identifiers. Attackers with low-level privileges can access high-sensitivity resources and modify signing workflows without proper authorization, potentially compromising document integrity and authenticity in electronic signature workflows. EPSS score of 0.03% (8th percentile) indicates low observed exploitation probability, with no public exploit code or active exploitation confirmed at time of analysis.