CVE-2026-3780

HIGH

Foxit PDF Editor/Reader Installer Uncontrolled Search Path Privilege Escalation

Title source: cna

Description

The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-writable directories, allowing a local attacker to place malicious binaries with the same names and have them loaded or executed instead of the legitimate system files, resulting in local privilege escalation.

References (1)

Core 1

Core References

https://www.foxit.com/support/security-bulletins.html

Scores

CVSS v3 7.3

EPSS 0.0012

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-426

Status published

Products (5)

foxit/pdf_editor < 13.2.2.24014

foxit/pdf_reader < 2025.3.0.35737

Foxit Software Inc./Foxit PDF Editor Versions 14.0.2 and earlier

Foxit Software Inc./Foxit PDF Editor Versions 2025.3 and earlier

Foxit Software Inc./Foxit PDF Reader Versions 2025.3 and earlier

Published Apr 01, 2026

Tracked Since Apr 01, 2026