CVE-2023-21608 is a high-severity Use After Free vulnerability affecting Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier), and 20.005.30418 (and earlier). This vulnerability allows for arbitrary code execution in the context of the current user, posing a significant risk to organizations. The exploitation of this issue requires user interaction, specifically that a victim must open a malicious file, highlighting the need for user awareness and training.
The CVSS score for this vulnerability is 7.8, indicating that it is classified as high severity. This score reflects the potential impact on confidentiality, integrity, and availability, as all three are rated high. Organizations should prioritize patching immediately to mitigate the risks associated with this vulnerability.
As of now, this vulnerability is included in the Known Exploited Vulnerabilities (KEV) catalog. It was added to the catalog on October 10, 2023, and organizations are advised to apply necessary mitigations as per the vendor's instructions or discontinue use of the product if mitigations are unavailable.
Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.
.webp)