Unrated severityNVD Advisory· Published Nov 5, 2020· Updated Sep 16, 2024
Adobe Acrobat Reader DC Local Privilege Escalation via Installer Component
CVE-2020-24433
Description
Adobe Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a local privilege escalation vulnerability that could enable a user without administrator privileges to delete arbitrary files and potentially execute arbitrary code as SYSTEM. Exploitation of this issue requires an attacker to socially engineer a victim, or the attacker must already have some access to the environment.
Affected products
2- Range: <=2020.012.20048, <=2020.001.30005, <=2017.011.30175
- Range: unspecified
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/acrobat/apsb20-67.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.