CVE-2026-3776 in PDF Editor
Resumen (Inglés)
The application does not validate the presence of required appearance (AP) data before accessing stamp annotation resources. When a PDF contains a stamp annotation missing its AP entry, the code continues to dereference the associated object without a prior null or validity check, which allows a crafted document to trigger a null pointer dereference and crash the application, resulting in denial of service.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Responsable
Foxit
Reservar
2026-03-08
Divulgación
2026-04-01
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 354541 | Foxit PDF Editor/PDF Reader denegación de servicio | 476 | No está definido | No está definido | CVE-2026-3776 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV