Loading market data...
← Back to CVE feed

CVE-2026-12057

HIGH CVSS 8.6 View on NVD ↗

Description

When the application executes the JavaScript script embedded in the PDF within the sandbox, it fails to intercept some dangerous interfaces, which allows remote scripts to be loaded, resulting in arbitrary code execution.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Published: Jun 15, 2026 12:16 UTC Modified: Jun 15, 2026 21:01 UTC