Foxitsoftware · Foxit Pdf Editor · CVE-2026-3780
Name of the Vulnerable Software and Affected Versions
The product name cannot be determined. (affected versions not specified)
Description
The application's installer operates with elevated privileges but utilizes untrusted search paths to resolve system executables and DLLs. These paths can include directories writable by users, enabling a local attacker to place malicious binaries with identical names. These malicious files can then be loaded or executed in place of legitimate system files, leading to local privilege escalation.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.