PT-2020-5058 · Adobe · Reader Mobile

Published

2020-07-21

Updated

2020-07-23

CVE-2020-9663

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Adobe Reader Mobile versions 20.0.1 and earlier

Description The issue is related to a directory traversal vulnerability in the program. Successful exploitation could lead to information disclosure. The vulnerability is associated with errors in restricting the path name to a directory with limited access, which could allow a remote attacker to access protected information in the context of the current user.

Recommendations For Adobe Reader Mobile versions 20.0.1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

BDU:2020-05647

CVE-2020-9663

Affected Products

Reader Mobile

PT-2020-5058 · Adobe · Reader Mobile

CVE-2020-9663

Weakness Enumeration

Related Identifiers

Affected Products

References · 4