CVE-2026-5937
Unhandled std::invalid_argument Exception in File Parsing Causes Crash
Publication date: 2026-04-27
Last updated on: 2026-04-29
Assigner: Foxit
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| foxit | pdf_editor | to 13.2.4 (exc) |
| foxit | pdf_editor | From 14.0.0 (inc) to 14.0.4 (exc) |
| foxit | pdf_editor | From 2023.0.0 (inc) to 2026.1.1 (exc) |
| foxit | pdf_reader | to 2026.1.1 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-248 | An exception is thrown from a function, but it is not caught. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is caused by insufficient verification of input parameters, which leads to format errors in files. When such an error occurs, it triggers an unhandled "std::invalid_argument" exception in the program.
As a result, the program terminates unexpectedly due to this unhandled exception.
How can this vulnerability impact me? :
The vulnerability can cause the affected program to terminate unexpectedly, leading to a denial of service condition.
Since the CVSS score indicates a high impact on availability (A:H) but no impact on confidentiality or integrity, the main risk is disruption of service rather than data compromise.