CVE-2020-24439
2.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Summary
Acrobat Reader DC for macOS versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a security feature bypass. While the practical security impact is minimal, a defense-in-depth fix has been implemented to further harden the Adobe Reader update process.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Adobe | Acrobat Reader | unspecified <= 2017.011.30175 | affected |
| Adobe | Acrobat Reader | unspecified <= 2020.012.20048 | affected |
| Adobe | Acrobat Reader | unspecified <= 2020.001.30005 | affected |
| Adobe | Acrobat Reader | unspecified <= None | affected |
Weaknesses
- CWE-347: Improper Verification of Cryptographic Signature (CWE-347)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.