APSB24-29 : Security update available for Adobe Acrobat Reader

2024-05-1400:00:00

helpx.adobe.com

adobe

acrobat

reader

security

update

windows

macos

vulnerabilities

exploitation

arbitrary code execution

memory leak

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.9

Confidence

Low

EPSS

0.001

Percentile

30.2%

JSON

Adobe has released a security update for Adobe Acrobat and Reader for Windows and macOS. This update addresses critical, important and moderate vulnerabilities. Successful exploitation could lead to arbitrary code execution and memory leak.

Affected configurations

Vulners

Node

adobeacrobat_dcRange≤24.002.20736

adobeacrobat_reader_dcRange≤24.002.20736

adobeacrobat_2020Range≤20.005.30574

adobeacrobat_reader_2020Range≤20.005.30574

VendorProductVersionCPE
adobeacrobat_dc*cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:*:*:*:*
adobeacrobat_reader_dc*cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:*:*:*:*
adobeacrobat_2020*cpe:2.3:a:adobe:acrobat_2020:*:*:*:*:*:*:*:*
adobeacrobat_reader_2020*cpe:2.3:a:adobe:acrobat_reader_2020:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
adobe	acrobat_dc	*	cpe:2.3:a:adobe:acrobat_dc::::::::
adobe	acrobat_reader_dc	*	cpe:2.3:a:adobe:acrobat_reader_dc::::::::
adobe	acrobat_2020	*	cpe:2.3:a:adobe:acrobat_2020::::::::
adobe	acrobat_reader_2020	*	cpe:2.3:a:adobe:acrobat_reader_2020::::::::