Adobe Acrobat Reader up to 17.012.3022x/20.005.3033x/22.001.2011x uncontrolled search path

A vulnerability was found in Adobe Acrobat Reader up to 17.012.3022x/20.005.3033x/22.001.2011x (Document Reader Software) and classified as critical. Affected by this issue is an unknown code block. Upgrading eliminates this vulnerability.

Field05/12/2022 12:45 PM05/14/2022 03:40 PM
cvss3_cna_cHH
cvss3_cna_iHH
cvss3_cna_aHH
identifierapsb22-16apsb22-16
urlhttps://helpx.adobe.com/security/products/acrobat/apsb22-16.htmlhttps://helpx.adobe.com/security/products/acrobat/apsb22-16.html
nameUpgradeUpgrade
cveCVE-2022-28247CVE-2022-28247
cve_assigned16485912001648591200
cve_cnaAdobe Systems IncorporatedAdobe Systems Incorporated
vendorAdobeAdobe
nameAcrobat ReaderAcrobat Reader
version<=17.012.3022x/20.005.3033x/22.001.2011x<=17.012.3022x/20.005.3033x/22.001.2011x
cwe427 (privilege escalation)427 (privilege escalation)
risk22
cvss3_vuldb_avNN
cvss3_vuldb_acHH
cvss3_vuldb_prLL
cvss3_vuldb_uiRR
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iLL
cvss3_vuldb_aLL
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
cvss3_cna_avLL
cvss3_cna_acHH
cvss3_cna_prLL
cvss3_cna_uiRR
cvss3_cna_sUU
date1652306400 (05/12/2022)1652306400 (05/12/2022)
typeDocument Reader SoftwareDocument Reader Software
cvss2_vuldb_avNN
cvss2_vuldb_acHH
cvss2_vuldb_ciPP
cvss2_vuldb_iiPP
cvss2_vuldb_aiPP
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss3_cna_basescore6.76.7
cvss2_vuldb_basescore4.64.6
cvss2_vuldb_tempscore4.04.0
cvss3_vuldb_basescore4.64.6
cvss3_vuldb_tempscore4.44.4
cvss3_meta_basescore5.65.6
cvss3_meta_tempscore5.55.5
price_0day$25k-$100k$25k-$100k
cve_nvd_summaryAcrobat Reader DC version 22.001.2011x (and earlier), 20.005.3033x (and earlier) and 17.012.3022x (and earlier) are affected by an uncontrolled search path vulnerability that could lead to local privilege escalation. Exploitation of this issue requires user interaction in that a victim must run the uninstaller with Admin privileges.

Do you need the next level of professionalism?

Upgrade your account now!