Critical vulnerability in Adobe Acrobat Reader allows remote code execution and privilege escalation

72% confidence

Description

A remote, anonymous attacker can exploit a vulnerability in Adobe Acrobat Reader to disclose confidential information and execute arbitrary code, potentially leading to full system compromise.

Affected Products

Vendor	Product	Versions
adobe	acrobat reader	—

CISA KEV❌ No

Actively exploited❌ No

PublishedApr 10, 2026

Last enriched3h ago

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-27220

Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current

Trending: 13

MEDIUMCVE-2026-3774

Self-Modifications Affecting Altered Printing and Redaction in Foxit PDF Editor

Trending: 11

MEDIUMCVE-2026-3778

Stack exhaustion caused by cyclic references in Foxit PDF Editor/Reader

Trending: 11

HIGHCVE-2026-27271

Illustrator versions 29.8.4, 30.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation

Trending: 6

HIGHCVE-2026-27272

Illustrator versions 29.8.4, 30.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of thi

Trending: 6

Pin to Dashboard

Verification

State: merged

Confidence: 72%

Vulnerability Timeline

CVE Published

Apr 10, 2026

Discovered by ZDM

Apr 10, 2026