CVE-2021-21046

Name of the Vulnerable Software and Affected Versions Acrobat Reader DC versions 2020.013.20074 and earlier Acrobat Reader DC versions 2020.001.30018 and earlier Acrobat Reader DC versions 2017.011.30188 and earlier

Description The issue is related to a memory corruption vulnerability that can be exploited by an unauthenticated attacker to cause an application denial-of-service. Exploitation requires user interaction, where a victim must open a malicious file. This can be achieved through a specially crafted PDF file, allowing a remote attacker to cause a denial-of-service.

Recommendations For versions 2020.013.20074 and earlier, consider avoiding the use of the affected software until a patch is available. For versions 2020.001.30018 and earlier, restrict the opening of PDF files from untrusted sources to minimize the risk of exploitation. For versions 2017.011.30188 and earlier, as a temporary workaround, consider disabling the ability to open PDF files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.