Published: Novem3:15:16 PM -0500Īcrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a use-after-free vulnerability in the processing of Format event actions that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Published: Novem3:15:17 PM -0500Īcrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a use-after-free vulnerability that could result in a memory address leak.
#ADOBE ACROBAT READER VERSION 8.0 UPDATE#
While the practical security impact is minimal, a defense-in-depth fix has been implemented to further harden the Adobe Reader update process. Exploitation requires a victim to download and run a malicious application. This could result in disclosure of sensitive information stored in databases used by the application. Published: Octo11:15:08 AM -0400Īdobe Acrobat Reader for Android version 20.6.2 (and earlier) does not properly restrict access to directories created by the application. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Acrobat Reader for Android versions 21.8.0 (and earlier) are affected by a Path traversal vulnerability.
0 kommentar(er)
