CVE-2020-9608

Name of the Vulnerable Software and Affected Versions Adobe Acrobat and Reader versions 2015.006.30518 through 2020.006.20042 Adobe Acrobat and Reader versions 2017.011.30166 and earlier

Description The issue is related to an out-of-bounds read in memory, which can be exploited by an attacker to gain unauthorized access to protected information in the context of the current user. This can be achieved by using a specially crafted PDF file. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For Adobe Acrobat and Reader versions 2015.006.30518 through 2020.006.20042, update to a version later than 2020.006.20042. For Adobe Acrobat and Reader versions 2017.011.30166 and earlier, update to a version later than 2017.011.30166. As a temporary workaround, consider restricting the use of Adobe Acrobat and Reader until a patch is available.