First published: Thu Nov 16 2023(Updated: )
Adobe Acrobat Reader versions 23.006.20360 (and earlier) and 20.005.30524 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
|Affected Software||Affected Version||How to fix|
|Adobe Acrobat Dc||>=15.008.20082<23.006.20380|
|Adobe Acrobat Reader DC||>=15.008.20082<23.006.20380|
|Adobe Acrobat Reader||>=20.001.30005<20.005.30539|
CVE-2023-44336 is a Use After Free vulnerability in Adobe Acrobat Reader that could result in arbitrary code execution.
Adobe Acrobat Reader versions 23.006.20360 and earlier, as well as versions 20.005.30524 and earlier, are affected.
Exploitation of CVE-2023-44336 requires user interaction, where a victim must open a malicious file or visit a malicious website.
CVE-2023-44336 has a severity rating of 7.8, which is considered high.
To fix CVE-2023-44336, update Adobe Acrobat Reader to version 23.006.20380 or newer.