CVE-2025-64787

Summary

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass cryptographic protections and gain limited unauthorized write access. Exploitation of this issue requires user interaction with a cryptographic signature.

Affected Software

VendorProductVersion RangeStatus
AdobeAcrobat Reader0 <= 20.005.30803affected

Weaknesses

  • CWE-347: Improper Verification of Cryptographic Signature (CWE-347)

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References