CVE-2023-44336

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 16, 2023

Updated: Nov 22, 2023

CWE ID 416

Summary

CVE-2023-44336 is a Use After Free vulnerability affecting Adobe Acrobat Reader versions 23.006.20360 and earlier, as well as 20.005.30524 and earlier. This issue could permit arbitrary code execution in the context of the current user. The vulnerability is triggered when the software fails to properly manage memory, leading to a use-after-free condition. Exploitation requires a victim to open a specially crafted malicious file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Acrobat DC
Adobe Acrobat Reader
Adobe Acrobat
Adobe Acrobat Reader DC

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s0thFo
https://www.cve.org/CVERecord?id=CVE-2023-44336
https://nvd.nist.gov/vuln/detail/CVE-2023-44336

Back to Vulnerability Database