CVE-2023-21612

Name of the Vulnerable Software and Affected Versions Adobe Acrobat Reader versions 22.003.20282 and earlier Adobe Acrobat Reader versions 22.003.20281 and earlier Adobe Acrobat Reader versions 20.005.30418 and earlier

Description The issue is related to the creation of temporary files in directories with incorrect permissions, which could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction, specifically opening a malicious file. This is a result of a violation of secure design principles.

Recommendations For Adobe Acrobat Reader versions 22.003.20282 and earlier, update to a version that fixes the Creation of Temporary File in Directory with Incorrect Permissions issue. For Adobe Acrobat Reader versions 22.003.20281 and earlier, update to a version that fixes the Creation of Temporary File in Directory with Incorrect Permissions issue. For Adobe Acrobat Reader versions 20.005.30418 and earlier, update to a version that fixes the Creation of Temporary File in Directory with Incorrect Permissions issue. As a temporary workaround, consider avoiding the use of affected Adobe Acrobat Reader versions until a patch is available.