CVE-2020-24439

Summary

Acrobat Reader DC for macOS versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a security feature bypass. While the practical security impact is minimal, a defense-in-depth fix has been implemented to further harden the Adobe Reader update process.

Affected Software

VendorProductVersion RangeStatus
AdobeAcrobat Readerunspecified <= 2017.011.30175affected
AdobeAcrobat Readerunspecified <= 2020.012.20048affected
AdobeAcrobat Readerunspecified <= 2020.001.30005affected
AdobeAcrobat Readerunspecified <= Noneaffected

Weaknesses

  • CWE-347: Improper Verification of Cryptographic Signature (CWE-347)

ADP Enrichment

CVE Program Container

Additional References

References