High severity8.8NVD Advisory· Published Oct 8, 2018· Updated Jun 17, 2026
CVE-2018-3940
CVE-2018-3940
Description
An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused. An attacker needs to trick the user to open the malicious file to trigger.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 9.1.0.5096
- Foxit Software/Foxit PDF Readerv5Range: 9.1.0.5096
Patches
Vulnerability mechanics
References
3- talosintelligence.com/vulnerability_reports/TALOS-2018-0607nvdExploitThird Party Advisory
- www.securitytracker.com/id/1041769nvdThird Party AdvisoryVDB Entry
- www.foxitsoftware.com/support/security-bulletins.phpnvdVendor Advisory
News mentions
0No linked articles in our index yet.