Acrobat Reader DC versions 20.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/acrobat/apsb22-16.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Information
Published : 2022-05-11 11:15
Updated : 2022-05-18 09:26
NVD link : CVE-2022-24104
Mitre link : CVE-2022-24104
JSON object : View
CWE
CWE-416
Use After Free
Products Affected
microsoft
- windows
adobe
- acrobat
- acrobat_reader_dc
- acrobat_reader
- acrobat_dc
apple
- macos