The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020/Adobe Acrobat Reader 2020 involve reading data beyond the buffer in memory, allowing attackers to execute arbitrary code.

🗓️ 27 Oct 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 3 Views

Vulnerabilities in Adobe PDF viewers and editors allow reading beyond memory buffers and code execution via crafted PDFs.

Reporter	Title	Published	Views	Family All 24
Tenable Nessus	Adobe Acrobat < 20.005.30467 / 23.001.20143 Multiple Vulnerabilities (APSB23-24)	11 Apr 202300:00	–	nessus
Tenable Nessus	Adobe Reader < 20.005.30467 / 23.001.20143 Multiple Vulnerabilities (APSB23-24)	11 Apr 202300:00	–	nessus
Tenable Nessus	Adobe Acrobat < 20.005.30467 / 23.001.20143 Multiple Vulnerabilities (APSB23-24) (macOS)	11 Apr 202300:00	–	nessus
Tenable Nessus	Adobe Reader < 20.005.30467 / 23.001.20143 Multiple Vulnerabilities (APSB23-24) (macOS)	11 Apr 202300:00	–	nessus
CNNVD	Adobe Acrobat Reader 缓冲区错误漏洞	12 Apr 202300:00	–	cnnvd
CNVD	Adobe Acrobat Reader Out-of-Bounds Read Vulnerability (CNVD-2023-57683)	16 Apr 202300:00	–	cnvd
CVE	CVE-2023-26425	12 Apr 202300:00	–	cve
Cvelist	CVE-2023-26425 ZDI-CAN-19854: Adobe Acrobat Reader DC Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability	12 Apr 202300:00	–	cvelist
EUVD	EUVD-2023-30245	3 Oct 202520:07	–	euvd
Kaspersky	KLA48835 Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader	11 Apr 202300:00	–	kaspersky

Source	Link
helpx	www.helpx.adobe.com/ru/security/products/acrobat/apsb23-24.html
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-427/
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2023041174
web	www.web.nvd.nist.gov/view/vuln/detail

12 Feb 2024 00:00Current

7.9High risk

Vulners AI Score7.9

CVSS 24.9

CVSS 35.5

EPSS0.02579

Adobe Acrobat Cloud Adobe Reader Cloud Acrobat 2020 Reader 2020