| Summary | The application does not detect or guard against cyclic PDF object references while handling JavaScript in PDF. When pages and annotations are crafted that reference each other in a loop, passing the document to APIs (e.g., SOAP) that perform deep traversal can cause uncontrolled recursion, stack exhaustion, and application crashes. |
|---|---|
| Summary | La aplicación no detecta ni protege contra referencias cíclicas de objetos PDF al manejar JavaScript en PDF. Cuando se elaboran páginas y anotaciones que se referencian mutuamente en un bucle, al pasar el documento a las API (por ejemplo, SOAP) que realizan un recorrido profundo puede causar recursión incontrolada, agotamiento de la pila y bloqueos de la aplicación. |
| Publication Date | April 1, 2026, 11:16 a.m. |
| Registration Date | April 15, 2026, 11:22 a.m. |
| Last Update | April 15, 2026, 2:50 a.m. |
| CVSS3.1 : MEDIUM | |
| スコア | 5.5 |
|---|---|
| Vector | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
| 攻撃元区分(AV) | ローカル |
| 攻撃条件の複雑さ(AC) | 低 |
| 攻撃に必要な特権レベル(PR) | 不要 |
| 利用者の関与(UI) | 要 |
| 影響の想定範囲(S) | 変更なし |
| 機密性への影響(C) | なし |
| 完全性への影響(I) | なし |
| 可用性への影響(A) | 高 |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 13.2.2.24014 | ||||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 14.0.0.33046 | 14.0.2.33402 | |||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 2023.1.0.15510 | 2023.3.0.23028 | |||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 2024.1.0.23997 | 2024.4.1.27687 | |||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 2025.1.0.27937 | 2025.3.0.35737 | |||
| cpe:2.3:a:foxit:pdf_reader:*:*:*:*:*:*:*:* | 2025.3.0.35737 | ||||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 13.2.2.63349 | ||||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 14.0.0.68868 | 14.0.2.69164 | |||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 2023.1.0.55583 | 2023.3.0.63083 | |||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 2024.1.0.63682 | 2024.4.1.66479 | |||
| cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* | 2025.1.0.66692 | 2025.3.0.69570 | |||
| cpe:2.3:a:foxit:pdf_reader:*:*:*:*:*:*:*:* | 2025.3.0.69570 | ||||
| Configuration2 | or higher | or less | more than | less than | |