PT-2026-32704 · Adobe · Acrobat Reader
Published
2026-04-14
·
Updated
2026-04-29
·
CVE-2026-34622
CVSS v3.1
8.6
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Acrobat Reader versions prior to 26.001.21412
Description
An Improperly Controlled Modification of Object Prototype Attributes, also known as Prototype Pollution, allows for arbitrary code execution in the context of the current user. This occurs when a victim opens a malicious file, requiring user interaction to trigger the execution.
Recommendations
Update to a version newer than 26.001.21411.
Fix
RCE
Prototype Pollution
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acrobat Reader