Unrated severityNVD Advisory· Published May 11, 2022· Updated Sep 17, 2024
Adobe Acrobat Reader DC Annotation Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2022-28248
Description
Acrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected products
2- Range: <=22.001.2011x, <=20.005.3033x, <=17.012.3022x
- Range: unspecified
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/acrobat/apsb22-16.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.