CVE-2026-57256
Received Received - Intake

PDF JavaScript Execution Causes Illegal Pointer Read in Application

Vulnerability report for CVE-2026-57256, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-08

Last updated on: 2026-07-08

Assigner: Foxit

Description

When the application opens a PDF and executes JavaScript, it performs abnormal operations on the list box field, and this operation is repeated after the form is reset. During this process, the application failed to adequately verify the validity of the form objects and their internal dictionary pointers, resulting in accessing internal members of invalid or improperly initialized fields. This led to an illegal pointer read, ultimately causing the application to crash.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-08
Last Modified
2026-07-08
Generated
2026-07-08
AI Q&A
2026-07-08
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 7 associated CPEs
Vendor Product Version / Range
foxit pdf_reader to 2024.2.3.25184 (exc)
foxit pdf_editor to 2024.2.3.25184 (exc)
foxit pdf_editor to 2024.x (inc)
foxit pdf_editor to 2023.3.0.23028 (exc)
foxit pdf_editor to 13.1.3.22478 (exc)
foxit pdf_editor to 12.1.7.15526 (exc)
foxit pdf_editor to 11.2.10.53951 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-416 The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability occurs when an application opens a PDF file that contains JavaScript and performs abnormal operations on a list box field. When the form is reset, these operations are repeated. The application does not properly verify the validity of the form objects and their internal dictionary pointers during this process. As a result, it accesses internal members of invalid or improperly initialized fields, leading to an illegal pointer read and causing the application to crash.

Impact Analysis

This vulnerability can cause the affected application to crash due to illegal pointer reads triggered by malformed PDF files containing JavaScript. The crash can lead to denial of service, interrupting normal use of the application and potentially causing loss of data or productivity.

Mitigation Strategies

To mitigate this vulnerability, users are advised to update their Foxit PDF Reader and Editor applications to the latest versions.

  • Use the application’s built-in update feature to obtain the latest version.
  • Alternatively, download the latest versions directly from the Foxit website.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-57256. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart