CVE-2024-30304

Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

CVSS

No CVSS.

References

Link	Resource
https://helpx.adobe.com/security/products/acrobat/apsb24-07.html	Vendor Advisory
https://helpx.adobe.com/security/products/acrobat/apsb24-07.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:adobe:acrobat:::::classic:::*
	cpe:2.3:a:adobe:acrobat_dc:::::continuous:::*
	cpe:2.3:a:adobe:acrobat_reader:::::classic:::*
	cpe:2.3:a:adobe:acrobat_reader_dc:::::continuous:::*

OR	cpe:2.3:o:apple:macos:-:::::::*
	cpe:2.3:o:microsoft:windows:-:::::::*

History

02 Dec 2024, 21:46

Type	Values Removed	Values Added
CPE		cpe:2.3:a:adobe:acrobat_dc:::::continuous:::* cpe:2.3:a:adobe:acrobat_reader:::::classic:::* cpe:2.3:a:adobe:acrobat_reader_dc:::::continuous:::* cpe:2.3:o:apple:macos:-:::::::* cpe:2.3:o:microsoft:windows:-:::::::* cpe:2.3:a:adobe:acrobat:::::classic:::*
First Time		Adobe acrobat Reader Adobe acrobat Reader Dc Adobe Adobe acrobat Microsoft windows Apple macos Apple Adobe acrobat Dc Microsoft
References	~~() https://helpx.adobe.com/security/products/acrobat/apsb24-07.html -~~	() https://helpx.adobe.com/security/products/acrobat/apsb24-07.html - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~7.8~~	v2 : unknown v3 : unknown
CWE	~~CWE-416~~

02 May 2024, 21:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-02 21:16

Updated : 2024-12-02 21:46

NVD link : CVE-2024-30304

Mitre link : CVE-2024-30304

JSON object : View

Products Affected

adobe

acrobat_dc
acrobat
acrobat_reader
acrobat_reader_dc

apple

macos

microsoft

windows

CWE

No CWE.

JSON object

Attach tags to CVE-2024-30304

Attach tags to `CVE-2024-30304`