CVE-2024-34100

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier Adobe Acrobat 2020 Acrobat Reader 2020

Description The issue is related to a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, where a victim must open a malicious file. This allows an attacker to execute arbitrary code.

Recommendations For Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier: update to a version that is not affected by this issue. For Adobe Acrobat 2020 and Acrobat Reader 2020: consider disabling the ability to open files from untrusted sources until a patch is available. As a temporary workaround, consider restricting access to malicious files to minimize the risk of exploitation.