VYPR
Unrated severityNVD Advisory· Published Jan 14, 2022· Updated Sep 17, 2024

Adobe Acrobat Reader Use-After-Free could lead to Arbitrary code execution

CVE-2021-44704

Description

Acrobat Reader DC version 21.007.20099 (and earlier), 20.004.30017 (and earlier) and 17.011.30204 (and earlier) are affected by a use-after-free vulnerability in the processing of Format event actions that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.