CVE-2024-41830

Name of the Vulnerable Software and Affected Versions Adobe Acrobat Reader versions 20.005.30636 through 24.002.20965 and earlier Adobe Acrobat versions prior to the fixed version (exact version not specified)

Description The issue is related to a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, where a victim must open a malicious file, specifically a PDF document containing JavaScript code. This allows a remote attacker to execute arbitrary code.

Recommendations For Adobe Acrobat Reader versions 20.005.30636 and earlier, update to a version that is not affected by this issue. For Adobe Acrobat versions prior to the fixed version, apply the necessary patch or update to resolve the vulnerability. As a temporary workaround, consider avoiding the use of JavaScript code in PDF documents until a patch is available. Restrict access to untrusted PDF files to minimize the risk of exploitation.