CVE-2020-3744

Name of the Vulnerable Software and Affected Versions Adobe Acrobat and Reader versions 2015.006.30508 and earlier Adobe Acrobat and Reader versions 2017.011.30156 and earlier Adobe Acrobat and Reader versions 2019.021.20061 and earlier

Description The issue is related to an out-of-bounds read vulnerability in Adobe Acrobat and Reader. This vulnerability can be exploited by attackers to obtain sensitive information. Successful exploitation could lead to information disclosure. The vulnerability can be triggered by a specially crafted PDF file, allowing a remote attacker to gain unauthorized access to protected information in the context of the current user.

Recommendations For Adobe Acrobat and Reader versions 2015.006.30508 and earlier, update to a version later than 2015.006.30508 to resolve the issue. For Adobe Acrobat and Reader versions 2017.011.30156 and earlier, update to a version later than 2017.011.30156 to resolve the issue. For Adobe Acrobat and Reader versions 2019.021.20061 and earlier, update to a version later than 2019.021.20061 to resolve the issue. As a temporary workaround, consider avoiding the use of specially crafted PDF files until a patch is available.