Adobe Acrobat Reader crashes when opening malformed PDFs

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.5

Adobe Acrobat Reader crashes when opening malformed PDFs

CVE-2026-3776

Summary

Adobe Acrobat Reader may crash if it's opened with a malicious PDF that's missing required data, which could disrupt business operations. This issue affects PDF file handling in Adobe Acrobat Reader. To protect against this, update to the latest version of Adobe Acrobat Reader or consider using an alternative PDF viewer.

Original title

Original description

The application does not validate the presence of required appearance (AP) data before accessing stamp annotation resources. When a PDF contains a stamp annotation missing its AP entry, the code continues to dereference the associated object without a prior null or validity check, which allows a crafted document to trigger a null pointer dereference and crash the application, resulting in denial of service.

nvd CVSS3.1 5.5

Vulnerability type

CWE-476 NULL Pointer Dereference

https://www.foxit.com/support/security-bulletins.html

Published: 1 Apr 2026 · Updated: 1 Apr 2026 · First seen: 1 Apr 2026