Use After Free Vulnerability in Adobe Acrobat Reader
CVE-2025-43550

7.8HIGH

Key Information:

Vendor: Adobe
Status: Acrobat Reader
Vendor: CVE Published:; 10 June 2025

What is CVE-2025-43550?

Adobe Acrobat Reader is impacted by a Use After Free vulnerability that may allow an attacker to execute arbitrary code in the context of the affected user. Successful exploitation necessitates user interaction, specifically requiring the user to open a maliciously crafted file. This threat underscores the importance of being cautious with file downloads and maintaining updated software versions to mitigate risk.

Affected Version(s)

Acrobat Reader 0 <= 25.001.20521

References

https://helpx.adobe.com/security/products/acrobat/apsb25-...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 10, 2025
Vulnerability Reserved
Apr 16, 2025