{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-57259","assignerOrgId":"14984358-7092-470d-8f34-ade47a7658a2","state":"PUBLISHED","assignerShortName":"Foxit","dateReserved":"2026-06-24T03:01:24.249Z","datePublished":"2026-07-08T07:36:07.818Z","dateUpdated":"2026-07-08T13:15:43.861Z"},"containers":{"cna":{"providerMetadata":{"orgId":"14984358-7092-470d-8f34-ade47a7658a2","shortName":"Foxit","dateUpdated":"2026-07-08T07:36:07.818Z"},"title":"Foxit PDF Editor/Reader XDP XFA XXE arbitrary local file read","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-611","description":"Improper Restriction of XML External Entity Reference (CWE-611)","type":"CWE"}]}],"impacts":[{"descriptions":[{"lang":"en","value":"Information Disclosure"}]}],"affected":[{"vendor":"Foxit Software Inc.","product":"Foxit PDF Editor","platforms":["Windows"],"versions":[{"status":"affected","version":"Versions 2026.1.1 and earlier"},{"status":"affected","version":"Versions 14.0.4 and earlier"},{"status":"affected","version":"Versions 13.2.4 and earlier"}],"defaultStatus":"unaffected"},{"vendor":"Foxit Software Inc.","product":"Foxit PDF Reader","platforms":["Windows"],"versions":[{"status":"affected","version":"Versions 2026.1.1 and earlier"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"The input file does not need to be strictly in a structurally valid PDF format. Instead, after reviewing the content, the original document disguised as a PDF will be sent to the parser. Malicious documents will construct malicious external entities that, through the protocol, point to local paths, thereby allowing access to any local files within the user's permission range.","supportingMedia":[{"type":"text/html","base64":false,"value":"The input file does not need to be strictly in a structurally valid PDF format. Instead, after reviewing the content, the original document disguised as a PDF will be sent to the parser. Malicious documents will construct malicious external entities that, through the protocol, point to local paths, thereby allowing access to any local files within the user's permission range."}]}],"references":[{"url":"https://www.foxit.com/support/security-bulletins.html"}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE","baseSeverity":"MEDIUM","baseScore":6.5,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}}],"credits":[{"lang":"en","value":"Trung Nguyen (@everping) of CyStack","type":"finder"}],"x_generator":{"engine":"Vulnogram 1.0.2"}},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-07-08T13:15:36.665436Z","id":"CVE-2026-57259","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-07-08T13:15:43.861Z"}}]}}