CVE-2024-20709

Acrobat Reader T5 (MSFT Edge) versions 120.0.2210.91 and earlier are affected by an Improper Input Validation vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
References
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:adobe:acrobat:*:*:*:*:*:edge:*:*
cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*

History

23 Jan 2024, 19:28

Type Values Removed Values Added
References () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20709 - () https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20709 - Patch, Vendor Advisory
CPE cpe:2.3:a:adobe:acrobat:*:*:*:*:*:edge:*:*
cpe:2.3:a:microsoft:edge_chromium:*:*:*:*:*:*:*:*
CWE CWE-20 NVD-CWE-noinfo
First Time Adobe
Microsoft
Microsoft edge Chromium
Adobe acrobat

15 Jan 2024, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-01-15 13:15

Updated : 2024-02-28 20:54


NVD link : CVE-2024-20709

Mitre link : CVE-2024-20709

CVE.ORG link : CVE-2024-20709


JSON object : View

Products Affected

microsoft

  • edge_chromium

adobe

  • acrobat
CWE
NVD-CWE-noinfo CWE-20

Improper Input Validation