Unrated severityNVD Advisory· Published Aug 14, 2024· Updated Aug 15, 2024
ZDI-CAN-24182: New Vulnerability Report - Adobe Acrobat Reader DC AcroForm Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability
CVE-2024-39423
Description
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected products
2<=20.005.30636, <=24.002.20965, <=24.002.20964, <=24.001.30123+ 1 more
- (no CPE)range: <=20.005.30636, <=24.002.20965, <=24.002.20964, <=24.001.30123
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- helpx.adobe.com/security/products/acrobat/apsb24-57.htmlmitrevendor-advisory
News mentions
0No linked articles in our index yet.