Use After Free Vulnerability in Adobe Acrobat Reader
CVE-2025-43574

7.8HIGH

Key Information:

Vendor: Adobe
Status: Acrobat Reader
Vendor: CVE Published:; 10 June 2025

What is CVE-2025-43574?

A Use After Free vulnerability exists in Adobe Acrobat Reader that can lead to arbitrary code execution when the user opens a crafted malicious file. This flaw affects versions 24.001.30235, 20.005.30763, and 25.001.20521. Exploit of this vulnerability necessitates that the victim interacts with the malicious file, emphasizing the importance of safe file handling.

Affected Version(s)

Acrobat Reader 0 <= 25.001.20521

References

https://helpx.adobe.com/security/products/acrobat/apsb25-...

vendor-advisory

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 10, 2025
Vulnerability Reserved
Apr 16, 2025

JSON