The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2024, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to synchronization errors when using shared resources. These vulnerabilities allow attackers to execute arbitrary code.

🗓️ 20 Sep 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

PDF viewers and editors have synchronization errors with shared resources enabling code execution.

Reporter	Title	Published	Views	Family All 17
Tenable Nessus	Adobe Acrobat < 20.005.30655 / 24.001.30159 / 24.002.21005 Multiple Vulnerabilities (APSB24-57)	15 Aug 202400:00	–	nessus
Tenable Nessus	Adobe Reader < 20.005.30655 / 24.002.21005 Multiple Vulnerabilities (APSB24-57)	15 Aug 202400:00	–	nessus
Tenable Nessus	Adobe Acrobat < 20.005.30655 / 24.001.30159 / 24.002.21005 Multiple Vulnerabilities (APSB24-57) (macOS)	15 Aug 202400:00	–	nessus
Tenable Nessus	Adobe Reader < 20.005.30655 / 24.002.21005 Multiple Vulnerabilities (APSB24-57) (macOS)	15 Aug 202400:00	–	nessus
Circl	CVE-2024-39420	16 Sep 202523:16	–	circl
CNNVD	Adobe Acrobat Reader 安全漏洞	14 Aug 202400:00	–	cnnvd
CNVD	Unspecified Vulnerability in Adobe Acrobat Reader (CNVD-2024-36916)	16 Aug 202400:00	–	cnvd
CVE	CVE-2024-39420	14 Aug 202415:07	–	cve
Cvelist	CVE-2024-39420 Acrobat Reader \| Time-of-check Time-of-use (TOCTOU) Race Condition (CWE-367)	14 Aug 202415:07	–	cvelist
EUVD	EUVD-2024-37965	3 Oct 202520:07	–	euvd

Source	Link
helpx	www.helpx.adobe.com/security/products/acrobat/apsb24-57.html
vuldb	www.vuldb.com/
web	www.web.nvd.nist.gov/view/vuln/detail
helpx	www.helpx.adobe.com/ru/security/products/acrobat/apsb24-57.html

20 Sep 2024 00:00Current

5.9Medium risk

Vulners AI Score5.9

CVSS 27.2

CVSS 37.8

EPSS0.01561

document vulnerabilities synchronization errors shared resources code execution adobe products