CVE-2024-20709

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 15, 2024

Updated: Jan 23, 2024

CWE ID 20

Summary

CVE-2024-20709 is a newly disclosed vulnerability affecting Acrobat Reader T5 in Microsoft Edge versions 120.0.2210.91 and earlier. This issue involves improper input validation, enabling an unauthenticated attacker to trigger an application denial-of-service (DoS) attack against the current user. The exploitation of this vulnerability necessitates user interaction, meaning the victim must open a maliciously crafted file to be affected.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Edge Chromium
Adobe Acrobat

Affected Vendors

Adobe
Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uHPSCd
https://www.cve.org/CVERecord?id=CVE-2024-20709
https://nvd.nist.gov/vuln/detail/CVE-2024-20709

Back to Vulnerability Database