Warning of Vulnerability in Adobe Reader and Acrobat

14. September 2023

The National Cyber Security Centre SK-CERT warns of a security update released for Adobe Reader and Acrobat for Windows and macOS systems. This update fixes a serious vulnerability that allows an attacker to execute arbitrary code.

Adobe products are the world’s favourite tools for everyday use of computers and other devices. Adobe Reader and Acrobat are used to work with PDF files and are a common part of both personal computers and mobile devices. Adobe has information that the vulnerability is currently being actively exploited by attackers.

The mentioned vulnerability is tracked as CVE-2023-26369 and has a CVSS score of 7.8.

Successful exploitation of this vulnerability can lead to the execution of arbitrary code.

Affected versions:

Acrobat DC – Version 20284 and earlier (Windows & macOS)
Acrobat Reader DC – Version 20284 and earlier (Windows & macOS)
Acrobat 2020 – Version 20516 (Mac), 20.005.30514 (Win) and earlier
Acrobat Reader 2020 – Version 30516 (Mac), 20.005.30514 (Win) and earlier

Measures

Regarding the mentioned vulnerability, the National Cyber Security Centre SK-CERT recommends the following to all users who use the affected products:

update the applications to the latest versions without delay,
do not forget to report any incident to the National Cyber Security Centre SK-CERT at [email protected].

Sources

« Späť na zoznam

Warning of Vulnerability in Adobe Reader and Acrobat

SK-CERT Bezpečnostné varovanie V20240506-02

SK-CERT Bezpečnostné varovanie V20240506-01

SK-CERT Bezpečnostné varovanie V20240503-03