Bulletin ID
Security update available for Adobe Acrobat Reader for Android | APSB21-89
|
Date Published |
Priority |
---|---|---|
ASPB21-89 |
October 12, 2021 |
3 |
Summary
Adobe has released a security update for Adobe Acrobat Reader for Android. This update addresses an important vulnerability. Successful exploitation could lead to information disclosure in the context of the current user.
Affected Versions
Product |
Version |
Platform |
---|---|---|
Adobe Acrobat Reader for Android |
21.8.0 and earlier version |
All Android versions |
Solution
Adobe categorizes these updates with the following priority ratings and recommends users update their installation to the latest version:
Product |
Version |
Platform |
Priority Rating |
Availability |
---|---|---|---|---|
Adobe Reader Mobile |
21.9.0 |
All supported Android versions 7.0 and above |
3 |
Vulnerability details
Vulnerability Category |
Vulnerability Impact |
Severity |
CVE Numbers |
---|---|---|---|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22) |
Arbitrary code execution |
Important |
CVE-2021-40724 |
Acknowledgements
Adobe would like to thank hulkvision_ for reporting this issue and for working with Adobe to help protect our customers