Home
HIGH: 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HDefault status
unaffected
Versions 2026.1.1 and earlier
affected
Versions 14.0.4 and earlier
affected
Default status
unaffected
Versions 2026.1.1 and earlier
affected
Description
The embedded JavaScript in the PDF deleted the pages, making the object invalid. The application attempted to perform a write operation on the invalid pop-up annotations, resulting in the program crashing.
Problem types
Product status
Versions 2026.1.1 and earlier
Versions 14.0.4 and earlier
Versions 2026.1.1 and earlier
Credits
Anonymous working with TrendAI Zero Day Initiative
References
www.foxit.com/support/security-bulletins.html