CVE-2023-44323

Name of the Vulnerable Software and Affected Versions Adobe Acrobat for Edge versions 118.0.2088.46 and earlier

Description The issue is related to a Use After Free vulnerability in the Adobe PDF component of Microsoft Edge, which can be exploited by an unauthenticated attacker to achieve an application denial-of-service in the context of the current user. This requires user interaction, where a victim must open a malicious file. The vulnerability allows a remote attacker to execute arbitrary code by opening a specially crafted PDF document in the browser.

Recommendations For Adobe Acrobat for Edge versions 118.0.2088.46 and earlier, update to a version later than 118.0.2088.46 to resolve the issue. As a temporary workaround, consider avoiding the use of Adobe Acrobat for Edge until a patch is available. Restrict access to malicious PDF files to minimize the risk of exploitation.