CVE-2026-5940

· NIST NVD ↗

Calling a function that triggers a UI refresh after removing comments via a script may access an invalidated object, leading to program crashes.

HIGH
CVSS severity
7.8
CVSS base score
2026-04-27
Published

CWE codes

CWE-416

Affected products

foxit:pdf_editorfoxit:pdf_reader

Sources