CVE-2019-5130

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader version 9.7.0.29435

Description A use-after-free issue in the JavaScript engine of Foxit PDF Reader can be triggered by a specially crafted PDF document, potentially leading to arbitrary code execution. An attacker must trick the user into opening the malicious file to exploit this issue. If the browser plugin extension is enabled, visiting a malicious site can also trigger the vulnerability.

Recommendations For Foxit PDF Reader version 9.7.0.29435, consider disabling the JavaScript engine in the PDF reader as a temporary workaround until a patch is available. Additionally, avoid opening PDF documents from untrusted sources and disable the browser plugin extension to minimize the risk of exploitation.