CVE-2026-5943

Summary

Document structural anomalies caused inconsistencies between page element relationships and internal index states. When scripts triggered document modifications, object reference validity was not properly maintained, leading to a crash when accessing an invalid pointer during page information queries.

Affected Software

VendorProductVersion RangeStatus
Foxit Software Inc.Foxit PDF EditorVersions 2026.1 and earlieraffected
Foxit Software Inc.Foxit PDF EditorVersions 14.0.3 and earlieraffected
Foxit Software Inc.Foxit PDF EditorVersions 13.2.3 and earlieraffected
Foxit Software Inc.Foxit PDF ReaderVersions 2026.1 and earlieraffected

Weaknesses

  • CWE-416: CWE-416 Use after free

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References