Out-of-Bounds Read Vulnerability in Adobe Acrobat Reader
CVE-2025-27164
5.5MEDIUM
Summary
Adobe Acrobat Reader is affected by an out-of-bounds read vulnerability that could result in the disclosure of sensitive memory data. This flaw allows attackers to potentially bypass security mitigations such as Address Space Layout Randomization (ASLR). The exploitation requires user interaction, as a victim must open a specifically crafted malicious file to trigger the vulnerability.
Affected Version(s)
Acrobat Reader 0 <= 25.001.20428
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved