CVE-2024-20721

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 15, 2024
Updated: Jan 23, 2024
CWE ID 20

Summary

CVE-2024-20721 is an Improper Input Validation vulnerability that affects Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier. This vulnerability allows an unauthenticated attacker to achieve an application denial-of-service in the context of the current user by exploiting a malicious file, requiring user interaction from the victim. The vulnerability has a risk score of 27 and a base severity of MEDIUM, with a base score of 5.5 according to CVSS:3.1. The potential danger this vulnerability poses to organizations is high, as it can lead to a denial-of-service attack on the affected application, impacting availability. It is advised to update Acrobat Reader T5 (MSFT Edge) to version 120.0.2210.92 or later to remediate this issue and mitigate the risk it poses.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-20721 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options