Security Bypass Vulnerability in Adobe Acrobat and Reader Products
CVE-2020-9712

5.5MEDIUM

Key Information:

Vendor: Adobe
Status: Adobe Acrobat And Reader
Vendor: CVE Published:; 19 August 2020

What is CVE-2020-9712?

A security bypass vulnerability exists in Adobe Acrobat and Reader that could be exploited to bypass critical security features. Specifically, this issue affects multiple versions of Adobe Acrobat and Reader, compromising their intended security measures. If successfully exploited, this vulnerability could allow unauthorized actions on the affected systems, posing significant risks to data integrity and user security.

Affected Version(s)

Adobe Acrobat and Reader 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier versions

References

https://www.zerodayinitiative.com/advisories/ZDI-20-990/

x_refsource_MISC

https://helpx.adobe.com/security/products/acrobat/apsb20-...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 19, 2020
Vulnerability Reserved
Mar 2, 2020