Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Violation of Secure Design Principles vulnerability that could result in arbitrary code execution in the context of the current user by bypassing the API blacklisting feature. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References
Link | Resource |
---|---|
https://helpx.adobe.com/security/products/acrobat/apsb23-30.html | Release Notes Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: adobe
Published: 2023-08-10T13:17:48.806Z
Updated: 2023-08-10T13:17:48.806Z
Reserved: 2023-04-04T20:46:42.583Z
Link: CVE-2023-29320
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-08-10T14:15:11.887
Modified: 2023-08-15T17:32:36.587
Link: CVE-2023-29320
JSON object: View
Redhat Information
No data.
CWE