The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat, and Adobe Acrobat Reader lies in their memory management after freeing memory. This allows attackers to gain unauthorized access to protected information.

🗓️ 24 Aug 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 4 Views

Document viewers and editors have memory after free vulnerabilities allowing unauthorized access via malicious files.

Reporter	Title	Published	Views	Family All 25
Tenable Nessus	Adobe Acrobat < 17.012.30262 / 20.005.30381 / 22.002.20191 Multiple Vulnerabilities (APSB22-39)	9 Aug 202200:00	–	nessus
Tenable Nessus	Adobe Reader < 17.012.30262 / 20.005.30381 / 22.002.20191 Multiple Vulnerabilities (APSB22-39)	9 Aug 202200:00	–	nessus
Tenable Nessus	Adobe Acrobat < 17.012.30262 / 20.005.30381 / 22.002.20191 Multiple Vulnerabilities (APSB22-39) (macOS)	9 Aug 202200:00	–	nessus
Tenable Nessus	Adobe Reader < 17.012.30262 / 20.005.30381 / 22.002.20191 Multiple Vulnerabilities (APSB22-39) (macOS)	9 Aug 202200:00	–	nessus
Circl	CVE-2022-35670	11 Aug 202218:38	–	circl
CNNVD	Adobe Acrobat Reader 资源管理错误漏洞	10 Aug 202200:00	–	cnnvd
CNVD	Adobe Acrobat Reader Resource Management Error Vulnerability (CNVD-2022-56977)	15 Aug 202200:00	–	cnvd
Check Point Advisories	Adobe Acrobat and Reader Use After Free (APSB22-39: CVE-2022-35670)	9 Aug 202200:00	–	checkpoint_advisories
CVE	CVE-2022-35670	11 Aug 202214:43	–	cve
Cvelist	CVE-2022-35670 Adobe Acrobat Reader Use-After-Free Memory leak	11 Aug 202214:43	–	cvelist

Source	Link
helpx	www.helpx.adobe.com/security/products/acrobat/apsb22-39.html
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-35670
vuldb	www.vuldb.com/ru/
web	www.web.nvd.nist.gov/view/vuln/detail

24 Aug 2022 00:00Current

6.3Medium risk

Vulners AI Score6.3

CVSS 24.9

CVSS 35.5

EPSS0.02404

Adobe Acrobat memory after free unauthorized access malicious file