PT-2026-24469 · Adobe · Acrobat Reader
Jann Horn
·
Published
2026-03-10
·
Updated
2026-03-10
·
CVE-2026-27221
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Acrobat Reader versions 24.001.30307 through 25.001.21265
Description
Acrobat Reader is affected by an Improper Certificate Validation issue that may allow an attacker to bypass security features and spoof the identity of a signer. User interaction is required for successful exploitation.
Recommendations
Update Acrobat Reader to a version later than 25.001.21265.
Update Acrobat Reader to a version later than 24.001.30308.
Update Acrobat Reader to a version later than 24.001.30307.
Fix
Improper Certificate Validation
Improper Verification of Cryptographic Signature
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Acrobat Reader