CVE-2020-24431
published 2020-11-05CVE-2020-24431: Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) for macOS are affected by a security…
medium4.4CVSS 3.1
AVLACLPRNUIRSUCLILAN
Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) for macOS are affected by a security feature bypass that could result in dynamic library code injection by the Adobe Reader process. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | <= 20.001.30005 | — |
| adobe | acrobat_dc | <= 17.011.30175 | — |
| adobe | acrobat_dc | <= 20.012.20048 | — |
| adobe | acrobat_reader | <= 20.001.30005 | — |
| adobe | acrobat_reader | unspecified – 2017.011.30175 | — |
| adobe | acrobat_reader_dc | <= 17.011.30175 | — |
| adobe | acrobat_reader_dc | <= 20.012.20048 | — |
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2020-11-05
Published