CVE-2024-30330

Name of the Vulnerable Software and Affected Versions Foxit PDF Reader (affected versions not specified) Foxit PDF Editor (affected versions not specified)

Description The issue is related to the use of pointers after memory release when handling Doc objects in AcroForms, allowing remote attackers to execute arbitrary code with a specially crafted PDF file. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within the handling of Doc objects due to the lack of validation of an object's existence before performing operations on it.

Recommendations For Foxit PDF Reader, update to a version that addresses the use-after-free vulnerability in AcroForms. For Foxit PDF Editor, update to a version that addresses the use-after-free vulnerability in AcroForms. At the moment, there is no information about a newer version that contains a fix for this vulnerability.