Bulletin ID
Last updated on
Nov. 1, 2021
Security update available for Adobe Acrobat Reader for Android | APSB21-89
|
|
Date Published |
Priority |
|---|---|---|
|
ASPB21-89 |
October 12, 2021 |
3 |
Summary
Adobe has released a security update for Adobe Acrobat Reader for Android. This update addresses an important vulnerability. Successful exploitation could lead to information disclosure in the context of the current user.
Affected Versions
|
Product |
Version |
Platform |
|---|---|---|
|
Adobe Acrobat Reader for Android |
21.8.0 and earlier version |
All Android versions |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the latest version:
|
Product |
Version |
Platform |
Priority Rating |
Availability |
|---|---|---|---|---|
|
Adobe Reader Mobile |
21.9.0 |
All supported Android versions 7.0 and above |
3 |
Vulnerability details
|
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Numbers |
|---|---|---|---|
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) |
Arbitrary code execution |
Important |
CVE-2021-40724 |
Acknowledgements
Adobe would like to thank hulkvision_ for reporting this issue and for working with Adobe to help protect our customers
