Adobe Acrobat Reader versions 23.003.20244 (and earlier)...
High severity
Unreviewed
Published
Aug 10, 2023
to the GitHub Advisory Database
•
Updated Apr 4, 2024
Description
Published by the National Vulnerability Database
Aug 10, 2023
Published to the GitHub Advisory Database
Aug 10, 2023
Last updated
Apr 4, 2024
Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Violation of Secure Design Principles vulnerability that could result in arbitrary code execution in the context of the current user by bypassing the API blacklisting feature. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References