Zero Day MonitorZDM

← Back to list

7.8

CVE-2026-47965EXPLOITEDPATCHED

adobe · acrobat reader

Acrobat Reader | Out-of-bounds Write (CWE-787)

Description

A vulnerability was found in Adobe Acrobat Reader up to 24.001.30365/26.001.21651 and classified as critical. This issue affects some unknown processing of the component File Handler. Such manipulation leads to out-of-bounds write. The attack can be launched remotely.

Affected Products

Vendor	Product	Versions
adobe	acrobat reader	0

References

https://helpx.adobe.com/security/products/acrobat/apsb26-63.html(vendor-advisory)

Related News (1 articles)

Tier C

VulDB17h ago

CVE-2026-47965 | Adobe Acrobat Reader up to 24.001.30365/26.001.21651 File out-of-bounds write (apsb26-63)

→ No new info (linked only)

CVSS 3.17.8 CRITICAL

VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

https://helpx.adobe.com/security/products/acrobat/apsb26-63.html

CWECWE-787

PublishedJun 12, 2026

Last enriched16h agov2

Trending Score50

Source articles1

Independent1

Info Completeness9/14

Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

HIGHCVE-2026-47911EXP

Acrobat Reader | Out-of-bounds Write (CWE-787)

HIGHCVE-2026-47955EXP

Acrobat Reader | Use After Free (CWE-416)

HIGHCVE-2026-47930EXP

ColdFusion | Improper Input Validation (CWE-20)

HIGHCVE-2026-47959EXP

Acrobat Reader | Stack-based Buffer Overflow (CWE-121)

HIGHCVE-2026-47932EXP

ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Jun 12, 2026

Discovered by ZDM

Jun 12, 2026

Actively Exploited

Jun 12, 2026

Patch Available

Jun 12, 2026

Updated: description, severity, activelyExploited

Jun 12, 2026

Version History

v2

Last enriched 16h ago

v2Tier C16h ago

Updated severity to CRITICAL, changed exploit availability to false, and provided a more detailed description of the vulnerability.

descriptionseverityactivelyExploited

via VulDB

v119h ago

Initial creation