CVE-2021-40729

Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions prior to 21.007.20096 Adobe Acrobat Reader versions prior to 21.007.20096 Adobe Acrobat 2017 versions prior to 17.011.30202 Adobe Acrobat Reader 2017 versions prior to 17.011.30202 Adobe Acrobat 2020 versions prior to 20.004.30015 Adobe Acrobat Reader 2020 versions prior to 20.004.30015 Foxit PDF Reader (affected versions not specified)

Description The issue is related to an out-of-bounds read vulnerability in memory, which could allow an attacker to gain unauthorized access to protected information. This vulnerability can be exploited when a user opens a malicious PDF file, potentially leading to the disclosure of sensitive memory and allowing attackers to bypass mitigations such as ASLR. The exploitation requires user interaction.

Recommendations For Adobe Acrobat versions prior to 21.007.20096, update to version 21.007.20096 or later. For Adobe Acrobat Reader versions prior to 21.007.20096, update to version 21.007.20096 or later. For Adobe Acrobat 2017 versions prior to 17.011.30202, update to version 17.011.30202 or later. For Adobe Acrobat Reader 2017 versions prior to 17.011.30202, update to version 17.011.30202 or later. For Adobe Acrobat 2020 versions prior to 20.004.30015, update to version 20.004.30015 or later. For Adobe Acrobat Reader 2020 versions prior to 20.004.30015, update to version 20.004.30015 or later. For Foxit PDF Reader, at the moment, there is no information about a newer version that contains a fix for this vulnerability.