CVE-2026-3780

HIGH

Foxit PDF Editor/Reader Installer Uncontrolled Search Path Privilege Escalation

Title source: cna

Description

The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-writable directories, allowing a local attacker to place malicious binaries with the same names and have them loaded or executed instead of the legitimate system files, resulting in local privilege escalation.

References (1)

https://www.foxit.com/support/security-bulletins.html

Scores

CVSS v3 7.3

EPSS 0.0001

EPSS Percentile 2.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-426

Status published

Products (3)

Foxit Software Inc./Foxit PDF Editor Versions 14.0.2 and earlier

Foxit Software Inc./Foxit PDF Editor Versions 2025.3 and earlier

Foxit Software Inc./Foxit PDF Reader Versions 2025.3 and earlier

Published Apr 01, 2026

Tracked Since Apr 01, 2026