Home
HIGH: 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HDefault status
unaffected
Versions 2026.1.1 and earlier
affected
Versions 14.0.4 and earlier
affected
Versions 13.2.4 and earlier
affected
Default status
unaffected
Versions 2026.1.1 and earlier
affected
Versions 14.0.3 and earlier
affected
Versions 13.2.3 and earlier
affected
Default status
unaffected
Versions 2026.1.1 and earlier
affected
Description
When the application opens a PDF and JavaScript modifies the properties of form fields, it causes the state of the underlying objects referenced by the program to become invalid. Eventually, it reads an illegal memory address, which leads to the crash of the application.
Problem types
Product status
Versions 2026.1.1 and earlier
Versions 14.0.4 and earlier
Versions 13.2.4 and earlier
Versions 2026.1.1 and earlier
Versions 14.0.3 and earlier
Versions 13.2.3 and earlier
Versions 2026.1.1 and earlier
Credits
Anonymous working with TrendAI Zero Day Initiative
References
www.foxit.com/support/security-bulletins.html