First published: Fri Sep 13 2024(Updated: )
Acrobat Reader versions 24.002.21005, 24.001.30159, 20.005.30655, 24.003.20054 and earlier are affected by a Type Confusion vulnerability that could result in arbitrary code execution in the context of the current user. This issue occurs when a resource is accessed using a type that is not compatible with the actual object type, leading to a logic error that an attacker could exploit. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Credit: psirt@adobe.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Any of | ||
Adobe Acrobat Reader | <20.005.30680 | |
Adobe Acrobat Reader | >=24.001.0<24.001.30187 | |
Adobe Acrobat Dc | >=24.003.0<24.003.20112 | |
Adobe Acrobat Reader | <20.005.30680 | |
Adobe Acrobat Reader DC | >=24.003.0<24.003.20112 | |
Any of | ||
Apple macOS | ||
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.