CVE-2026-3780Untrusted Search Path in Software INC Foxit PDF Editor

CWE-426Untrusted Search Path3 documents3 sources
Severity
7.3HIGHNVD
EPSS
0.0%
top 98.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Foxit Software INC Foxit PDF EditorFoxit Software INC Foxit PDF Reader
Timeline
PublishedApr 1

Description

The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-writable directories, allowing a local attacker to place malicious binaries with the same names and have them loaded or executed instead of the legitimate system files, resulting in local privilege escalation.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 1.3 | Impact: 5.9

Affected Packages2 packages

CVEListV5foxit_software_inc/foxit_pdf_editorVersions 14.0.2 and earlier, Versions 2025.3 and earlier+1
CVEListV5foxit_software_inc/foxit_pdf_readerVersions 2025.3 and earlier

🔴Vulnerability Details

2
GHSA
GHSA-jcq9-87h6-4wcr: The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-2026-04-01
CVEList
Foxit PDF Editor/Reader Installer Uncontrolled Search Path Privilege Escalation2026-04-01
CVE-2026-3780 — Untrusted Search Path | cvebase