{“lastseen”:”2026-04-16T20:14:58″,”description”:”\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed one Foxit Reader vulnerability, and six LibRaw file reader vulnerabilities.\\n\\nThe vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to _Cisco ‘s third-party vulnerability disclosure policy_.\\n\\nFor Snort coverage that can detect the exploitation of these vulnerabilities, download the latest rule sets from _Snort.org_, and our latest Vulnerability Advisories are always posted on _Talos Intelligence ‘s website_.\\n\\n## **Foxit use-after-free vulnerability**\\n\\n _Discovered by KPC of Cisco Talos._\\n\\nFoxit Reader allows users to view, edit, and sign PDF documents, among other features. Foxit aims to be one of the most feature-rich PDF readers on the market, and contains many similar functions to that of Adobe Acrobat Reader.\\n\\nTALOS-2026-2365 (CVE-2026-3779) is a use-after-free vulnerability in the way Foxit Reader handles an Array object. A specially crafted JavaScript code inside a malicious PDF document can trigger this vulnerability, which can lead to memory corruption and result in arbitrary code execution. An attacker needs to trick the user into opening the malicious file to trigger this vulnerability.\\n\\n## **LibRaw heap-based buffer overflow and integer overflow vulnerabilities**\\n\\n _Discovered by Francesco Benvenuto of Cisco Talos._\\n\\nLibRaw is a library and user interface for processing RAW file types and metadata created by digital cameras. Talos analysts found 6 vulnerabilities in LibRaw. \\n\\nTALOS-2026-2330 (CVE-2026-20911), TALOS-2026-2331 (CVE-2026-21413), TALOS-2026-2358 (CVE-2026-20889), and TALOS-2026-2359 (CVE-2026-24660) are heap-based buffer overflow vulnerabilities in LibRaw, and TALOS-2026-2363 (CVE-2026-24450) and TALOS-2026-2364 (CVE-2026-20884) are integer overflow vulnerabilities. Specially crafted malicious files can lead to heap buffer overflow in all cases. An attacker can provide a malicious file to trigger these vulnerabilities.”,”published”:”2026-04-16T19:00:24″,”modified”:”2026-04-16T19:00:24″,”type”:”talosblog”,”title”:”Foxit, LibRaw vulnerabilities”,”source”:””,”references”:””,”id”:”TALOSBLOG:BE0E87FAEA20A16ABC6D061A32B0C608″,”bulletinFamily”:”blog”,”cwe”:null,”cvelist”:[“CVE-2026-20884″,”CVE-2026-20889″,”CVE-2026-20911″,”CVE-2026-21413″,”CVE-2026-24450″,”CVE-2026-24660″,”CVE-2026-3779″],”sourceData”:””,”sourceHref”:””,”cvss”:{“score”:9.8,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/blog.talosintelligence.com\/foxit-libraw-vulnerabilities\/”,”category_name”:”News”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:”2026-04-16T20:14:58″,”description”:”\\n\\nCisco Talos’ Vulnerability Discovery \\u0026 Research team recently disclosed one Foxit Reader vulnerability, and six LibRaw file reader vulnerabilities.\\n\\nThe vulnerabilities mentioned in this…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[9,6,8,35,12,13,7,69,11,5],"class_list":["post-47521","post","type-post","status-publish","format-standard","hentry","category-category_news","tag-critical","tag-cve","tag-cvss","tag-cvss-98","tag-exploit","tag-news","tag-security","tag-talosblog","tag-tapic","tag-vulnerability"],"yoast_head":"\n