CVE-2021-21037

Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions prior to 2020.013.20074 Adobe Acrobat versions prior to 2020.001.30018 Adobe Acrobat versions prior to 2017.011.30188 Adobe Reader versions prior to 2020.013.20074 Adobe Reader versions prior to 2020.001.30018 Adobe Reader versions prior to 2017.011.30188

Description The issue is related to incorrect restriction of a directory path with limited access. Exploitation of this issue may allow a remote attacker to execute arbitrary code in the context of the current user by using a specially crafted PDF file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution, requiring user interaction to open a malicious file.

Recommendations For Adobe Acrobat versions prior to 2020.013.20074, update to a version later than 2020.013.20074 to resolve the issue. For Adobe Acrobat versions prior to 2020.001.30018, update to a version later than 2020.001.30018 to resolve the issue. For Adobe Acrobat versions prior to 2017.011.30188, update to a version later than 2017.011.30188 to resolve the issue. For Adobe Reader versions prior to 2020.013.20074, update to a version later than 2020.013.20074 to resolve the issue. For Adobe Reader versions prior to 2020.001.30018, update to a version later than 2020.001.30018 to resolve the issue. For Adobe Reader versions prior to 2017.011.30188, update to a version later than 2017.011.30188 to resolve the issue.