CVE-2024-41832
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Aug 14, 2024
Updated: Aug 15, 2024
CWE ID 125
Summary
CVE-2024-41832 is a newly disclosed vulnerability affecting Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, and 24.001.30123, and potentially older releases. This issue represents an out-of-bounds read vulnerability, allowing an attacker to access sensitive memory content. By doing so, the attacker could bypass Address Space Layout Randomization (ASLR), a common mitigation technique. To exploit this vulnerability, a user must open a maliciously crafted file.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Adobe Acrobat DC
- Adobe Acrobat
- Adobe Acrobat Reader
- Adobe Acrobat Reader DC
Affected Vendors
- Adobe