CISA Warns of Actively Exploited Adobe Acrobat Reader Vulnerability

2023-10-11 12:26

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a high-severity flaw in Adobe Acrobat Reader to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. Tracked as CVE-2023-21608 (CVSS score: 7.8), the vulnerability has been described as a use-after-free bug that can be exploited to achieve remote code execution (RCE) with the

News URL

https://thehackernews.com/2023/10/us-cybersecurity-agency-warns-of.html

#acrobat #adobe #adobeacrobat #cisa #vulnerability #CVE-2023-21608

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2023-01-18	CVE-2023-21608	Use After Free vulnerability in Adobe products Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. local low complexity adobe CWE-416	7.8

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Adobe		164	60	1919	820	2135	4934

News URL

Related news

Related Vulnerability

Related vendor