Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) are affected by a use-after-free vulnerability in the processing of annotations that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: adobe

Published: 2022-05-11T17:33:48.396330Z

Updated: 2024-09-17T00:31:47.108Z

Reserved: 2022-03-30T00:00:00

Link: CVE-2022-28238

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-05-11T18:15:26.287

Modified: 2024-11-21T06:57:00.713

Link: CVE-2022-28238

cve-icon Redhat

No data.