CVE-2024-41832

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 14, 2024

Updated: Aug 15, 2024

CWE ID 125

Summary

CVE-2024-41832 is a newly disclosed vulnerability affecting Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, and 24.001.30123, and potentially older releases. This issue represents an out-of-bounds read vulnerability, allowing an attacker to access sensitive memory content. By doing so, the attacker could bypass Address Space Layout Randomization (ASLR), a common mitigation technique. To exploit this vulnerability, a user must open a maliciously crafted file.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Adobe Acrobat DC
Adobe Acrobat
Adobe Acrobat Reader
Adobe Acrobat Reader DC

Affected Vendors

Adobe

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xLOFp5
https://www.cve.org/CVERecord?id=CVE-2024-41832
https://nvd.nist.gov/vuln/detail/CVE-2024-41832

Back to Vulnerability Database