Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
History

Mon, 02 Dec 2024 22:15:00 +0000

Type Values Removed Values Added
First Time appeared Adobe acrobat
Adobe acrobat Dc
Adobe acrobat Reader Dc
Apple
Apple macos
Microsoft
Microsoft windows
CPEs cpe:2.3:a:adobe:acrobat:*:*:*:*:classic:*:*:*
cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*
cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:classic:*:*:*
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Adobe acrobat
Adobe acrobat Dc
Adobe acrobat Reader Dc
Apple
Apple macos
Microsoft
Microsoft windows

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2024-05-02T21:04:51.668Z

Updated: 2024-08-02T01:32:07.164Z

Reserved: 2024-03-26T16:04:09.506Z

Link: CVE-2024-30302

cve-icon Vulnrichment

Updated: 2024-05-03T15:34:22.851Z

cve-icon NVD

Status : Analyzed

Published: 2024-05-02T21:16:11.747

Modified: 2024-12-02T21:46:16.643

Link: CVE-2024-30302

cve-icon Redhat

No data.