Lucene search
K

CVE-2026-25961 SumatraPDF Update MITM -> Arbitrary Code Execution

๐Ÿ—“๏ธย 09 Feb 2026ย 21:34:05Reported byย GitHub_MTypeย 
cvelist
ย cvelist
๐Ÿ”—ย www.cve.org๐Ÿ‘ย 31ย Views

3.5.0โ€“3.5.2 disable Transport Layer Security verification and run unsigned installers, enabling code execution.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2026-25961
9 Feb 202621:34
โ€“attackerkb
BDU FSTEC
The vulnerability of the PDF, EPUB, MOBI, FB2, CHM, XPS, and DjVu viewing program SumatraPDF lies in its authentication proceduresโ€™ deficiencies, allowing for arbitrary code execution.
18 Feb 202600:00
โ€“bdu_fstec
GithubExploit
Exploit for CVE-2026-25961
10 Feb 202608:36
โ€“githubexploit
Circl
CVE-2026-25961
9 Feb 202622:18
โ€“circl
CNNVD
sumatrapdf ๅฎ‰ๅ…จๆผๆดž
9 Feb 202600:00
โ€“cnnvd
CVE
CVE-2026-25961
9 Feb 202621:34
โ€“cve
Exploit DB
SumatraPDF 3.5.2 - Remote Code Execution
30 Apr 202600:00
โ€“exploitdb
NVD
CVE-2026-25961
9 Feb 202622:16
โ€“nvd
OSV
CVE-2026-25961 SumatraPDF Update MITM -> Arbitrary Code Execution
9 Feb 202621:34
โ€“osv
Packet Storm
๐Ÿ“„ SumatraPDF 3.5.2 Remote Code Execution
5 May 202600:00
โ€“packetstorm
Rows per page
[
  {
    "vendor": "sumatrapdfreader",
    "product": "sumatrapdf",
    "versions": [
      {
        "version": ">= 3.5.0, <= 3.5.2",
        "status": "affected"
      }
    ]
  }
]

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation