CVE-2021-39858
published 2021-09-29CVE-2021-39858: Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds read…
low3.3CVSS 3.0
AVLACLPRNUIRSUCLINAN
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory information in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe | acrobat | 20.001.30005 – 20.004.30006 | — |
| adobe | acrobat_2017 | 17.011.30158 – 17.011.30199 | — |
| adobe | acrobat_dc | 20.006.20034 – 21.005.20060 | — |
| adobe | acrobat_dc | 20.006.20034 – 21.005.20058 | — |
| adobe | acrobat_reader | 20.001.30005 – 20.004.30006 | — |
| adobe | acrobat_reader | unspecified – DC 2021 July | — |
| adobe | acrobat_reader_2017 | 17.011.30158 – 17.011.30199 | — |
| adobe | acrobat_reader_dc | 20.006.20034 – 21.005.20060 | — |