Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
| Vendor | Product | Versions |
|---|---|---|
| adobe | acrobat_dc | < 25.001.21288, < 25.001.21288, < 24.001.30356 |
Downstream vendors/products affected by this vulnerability
| Vendor | Product | Source | Confidence |
|---|---|---|---|
| adobe | acrobat_reader_dc | cve_cpe | 95% |
| adobe | acrobat | cve_cpe | 95% |
| apple | macos | cve_cpe | 95% |
| microsoft | windows | cve_cpe | 95% |
