Home / Vulnerability Intelligence / CVE-2026-30292

CVE-2026-30292 - Vulnerability Analysis

HighCVSS: 8.4

Last Updated: April 1, 2026

Docudepot PDF Reader - Arbitrary File Overwrite

Published: April 1, 2026Updated: April 1, 2026

Overview

Docudepot PDF Reader: PDF Viewer APP v1.0.34 contains an arbitrary file overwrite vulnerability caused by the file import process, letting attackers overwrite critical internal files leading to code execution or information exposure, exploit requires no special privileges.

Severity & Score

Severity: High

CVSS Score: 8.4

Impact

Attackers can overwrite critical files, leading to arbitrary code execution or exposure of sensitive information.

Mitigation

Update to the latest version of Docudepot PDF Reader: PDF Viewer APP.

References

https://docudepot.bitbucket.io/
https://github.com/Secsys-FDU/AF_CVEs/issues/20
https://play.google.com/store/apps/details?id=pdf.pdfreader.pdfeditor.pdfmaker.pdfscanner
https://secsys.fudan.edu.cn/

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-30292
Severity: High
CVSS Score: 8.4
Type: unrestricted_file_upload
Status: new

CWE

CWE-73

CVSS Metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H