JavaScript Reentrancy Issue in Foxit Document Software
CVE-2026-57243

6.1MEDIUM

Key Information:

Vendor

Foxit Inc.

Vendor
CVE Published:
8 July 2026

What is CVE-2026-57243?

A vulnerability in Foxit Document Software arises from a JavaScript reentrancy issue during page opening and form formatting. This situation can lead to an inconsistent document status. Consequently, when outdated page information is processed, the application may attempt to access invalid memory addresses, resulting in crashes. This poses significant risks to user data integrity and application performance.

Affected Version(s)

Foxit PDF Editor Windows Versions 2026.1.1 and earlier

Foxit PDF Editor Windows Versions 14.0.4 and earlier

Foxit PDF Editor Windows Versions 13.2.4 and earlier

References

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

XuPeng
.