pdfforge

PDFforge is a software company known for PDF creation and manipulation tools. This high-severity vulnerability (CVSS 7.8) requires local access and user interaction to exploit, but once successful grants an attacker high-level compromise including confidentiality, integrity, and availability impacts without requiring authentication or system privileges. Security teams should monitor for exploitation attempts targeting PDFforge users, particularly through socially engineered file delivery, and ensure patches are applied once the vendor releases a fix by the June 2026 deadline.