Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. High Severity Vulnerability in Adobe Acrobat Reader
Alerts

High Severity Vulnerability in Adobe Acrobat Reader

12 September 2024

Adobe has released security updates to address a high severity vulnerability (CVE-2024-41869) affecting Adobe Acrobat Reader. The vulnerability has a Common Vulnerability Scoring System (CVSSv3) score of 7.8 out of 10.

The vulnerability is a critical use after free vulnerability and successful exploitation of it could lead to remote code execution when opening a specially crafted PDF document.

The vulnerability affects the following product versions:

  • Acrobat Reader DC Continuous, 24.003.20054 and earlier versions (Windows) 

  • Acrobat Reader DC Continuous, 24.002.21005 and earlier versions (MacOS)

  • Acrobat Reader 2020 Classic 2020, 20.005.30655 and earlier versions (Windows & MacOS)


Users and administrators of affected product versions are advised to update to the latest version immediately.

More information is available here: 

https://helpx.adobe.com/security/products/acrobat/apsb24-70.html 
https://www.bleepingcomputer.com/news/security/adobe-fixes-acrobat-reader-zero-day-with-public

Back to top