{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-30292", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-01T18:02:16.429Z", "dateReserved": "2026-03-04T00:00:00.000Z", "datePublished": "2026-04-01T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-01T14:14:16.185Z"}, "descriptions": [{"lang": "en", "value": "An arbitrary file overwrite vulnerability in Docudepot PDF Reader: PDF Viewer APP v1.0.34 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://secsys.fudan.edu.cn/"}, {"url": "https://docudepot.bitbucket.io/"}, {"url": "https://play.google.com/store/apps/details?id=pdf.pdfreader.pdfeditor.pdfmaker.pdfscanner"}, {"url": "https://github.com/Secsys-FDU/AF_CVEs/issues/20"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-73", "lang": "en", "description": "CWE-73 External Control of File Name or Path"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-01T18:00:51.820862Z", "id": "CVE-2026-30292", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T18:02:16.429Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.4, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-30292", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-01T18:00:51.820862Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-73", "description": "CWE-73 External Control of File Name or Path"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T18:01:29.153Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://secsys.fudan.edu.cn/"}, {"url": "https://docudepot.bitbucket.io/"}, {"url": "https://play.google.com/store/apps/details?id=pdf.pdfreader.pdfeditor.pdfmaker.pdfscanner"}, {"url": "https://github.com/Secsys-FDU/AF_CVEs/issues/20"}], "descriptions": [{"lang": "en", "value": "An arbitrary file overwrite vulnerability in Docudepot PDF Reader: PDF Viewer APP v1.0.34 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-01T14:14:16.185Z"}}}, "cveMetadata": {"cveId": "CVE-2026-30292", "state": "PUBLISHED", "dateUpdated": "2026-04-01T18:02:16.429Z", "dateReserved": "2026-03-04T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-01T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An arbitrary file overwrite vulnerability in Docudepot PDF Reader: PDF Viewer APP v1.0.34 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure."}], "id": "CVE-2026-30292", "lastModified": "2026-04-27T19:18:46.690", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 8.4, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-01T15:22:59.057", "references": [{"source": "cve@mitre.org", "url": "https://docudepot.bitbucket.io/"}, {"source": "cve@mitre.org", "url": "https://github.com/Secsys-FDU/AF_CVEs/issues/20"}, {"source": "cve@mitre.org", "url": "https://play.google.com/store/apps/details?id=pdf.pdfreader.pdfeditor.pdfmaker.pdfscanner"}, {"source": "cve@mitre.org", "url": "https://secsys.fudan.edu.cn/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-73"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "1.0.34"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "pdf_reader_app", "vendor": "docudepot"}], "analysis": {"en": {"generated_at": "2026-04-02T03:14:02.936587+00:00", "value": {"mitigation_remediation": ["Uninstall the Docudepot PDF Reader App until a vendor patch is released or removed from the device", "If the app must remain, disable or remove the file import functionality and reduce storage permissions so the app cannot write outside its own sandbox", "Actively monitor the vendor\u2019s GitHub or Bitbucket repository, the Apps Store page, and reputable security advisories for an update or correction, and apply any available patch immediately", "Consider running the app in a sandboxed or isolated user profile to limit its access to critical system files", "Verify the integrity of any file before it is imported, for example by checking checksums or using a digital signature mechanism"], "summary": {"action": "Immediate Patch", "impact": "Arbitrary code execution via file overwrite"}, "threat_synthesis": {"affected_systems": "The vulnerable product is Docudepot PDF Reader: PDF Viewer App version 1.0.34. No other vendors or product versions are listed as affected.", "description_and_impact": "An attacker can supply a specially crafted file to the import function of Docudepot PDF Reader: PDF Viewer App v1.0.34, causing the application to overwrite internal files such as executables or configuration data. The overwrite can enable the execution of malicious code or expose sensitive information. The vulnerability originates from a path traversal/incorrect file handling weakness that allows unauthenticated file replacement without validation.", "risk_and_exploitability": "The severity is high with a CVSS score of 8.4. An EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector involves an attacker delivering a malicious file to the user\u2019s device and tricking or forcing the application to import it, which then triggers the overwrite. The risk is significant because successful exploitation can lead to full code execution or data exposure."}}}}, "created": "2026-04-02T07:51:21.184143+00:00", "updated": "2026-04-03T08:59:03.643501+00:00", "vendors": ["docudepot", "docudepot$PRODUCT$pdf_reader_app"]}