Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.8
Acrobat Reader: Opening Malicious Files Can Crash and Run Code
CVE-2026-27220
Summary
If you use Adobe Acrobat Reader, be aware that certain versions have a security flaw that could allow an attacker to execute code on your computer if you open a malicious file. This can happen if you open a file from an untrusted source, so be cautious when opening files from unknown emails or websites. Update to the latest version of Acrobat Reader to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| adobe | acrobat_dc | <= 25.001.21288 | – |
| adobe | acrobat_reader_dc | <= 25.001.21288 | – |
| adobe | acrobat | > 24.001.20604 , <= 24.001.30356 | – |
Original title
Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the curre...
Original description
Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd CVSS3.1
7.8
Vulnerability type
CWE-416
Use After Free
Published: 10 Mar 2026 · Updated: 14 Mar 2026 · First seen: 10 Mar 2026