Multiple vulnerabilities in Adobe Acrobat Reader

Description

Multiple vulnerabilities were found in Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions.

Below is a complete list of vulnerabilities:

1. Use after free vulnerability in media can be exploited to cause denial of service or execute arbitrary code.
2. Type confusion vulnerability can be exploited to cause denial of service.
3. Memory safety vulnerability can be exploited to execute arbitrary code.
4. Security vulnerability in composition area can be exploited to bypass security restrictions.
5. Validation of untrusted input vulnerability in new tab page can be exploited to bypass security restrictions.

Original advisories

• APSB24-92

Related products

• Adobe-Acrobat-Reader-DC-Continuous
• Adobe-Acrobat-Reader-2020

CVE list

• CVE-2024-49530
  unknown
• CVE-2024-49531
  unknown
• CVE-2024-49534
  unknown
• CVE-2024-49535
  unknown
• CVE-2024-49532
  unknown
• CVE-2024-49533
  unknown

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com