CVE-2023-44361

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 16, 2023

Updated: Nov 22, 2023

CWE ID 416

Summary

CVE-2023-44361 is a Use After Free vulnerability affecting Adobe Acrobat Reader versions 23.006.20360 and earlier, as well as 20.005.30524 and earlier. This issue allows an attacker to disclose sensitive memory by manipulating the software, potentially bypassing mitigations like Address Space Layout Randomization (ASLR). The vulnerability can only be exploited if the victim opens a specially crafted malicious file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Acrobat DC
Adobe Acrobat Reader
Adobe Acrobat
Adobe Acrobat Reader DC

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s0tnyf
https://www.cve.org/CVERecord?id=CVE-2023-44361
https://nvd.nist.gov/vuln/detail/CVE-2023-44361

Back to Vulnerability Database