Vulnerability Details CVE-2021-28636
Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Uncontrolled Search Path Element vulnerability. An attacker with access to the victim's C:/ folder could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.6%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 8.5
References
Products affected by CVE-2021-28636
-
cpe:2.3:a:adobe:acrobat_dc:*
-
cpe:2.3:a:adobe:acrobat_dc:15.008.20082
-
cpe:2.3:a:adobe:acrobat_dc:15.009.20069
-
cpe:2.3:a:adobe:acrobat_dc:15.009.20071
-
cpe:2.3:a:adobe:acrobat_dc:15.009.20077
-
cpe:2.3:a:adobe:acrobat_dc:15.009.20079
-
cpe:2.3:a:adobe:acrobat_dc:15.010.20056
-
cpe:2.3:a:adobe:acrobat_dc:15.010.20059
-
cpe:2.3:a:adobe:acrobat_dc:15.010.20060
-
cpe:2.3:a:adobe:acrobat_dc:15.016.20039
-
cpe:2.3:a:adobe:acrobat_dc:15.016.20041
-
cpe:2.3:a:adobe:acrobat_dc:15.016.20045
-
cpe:2.3:a:adobe:acrobat_dc:15.017.20050
-
cpe:2.3:a:adobe:acrobat_dc:15.017.20053
-
cpe:2.3:a:adobe:acrobat_dc:15.020.20039
-
cpe:2.3:a:adobe:acrobat_dc:15.020.20042
-
cpe:2.3:a:adobe:acrobat_dc:15.023.20053
-
cpe:2.3:a:adobe:acrobat_dc:15.023.20056
-
cpe:2.3:a:adobe:acrobat_dc:15.023.20070
-
cpe:2.3:a:adobe:acrobat_dc:17.000.0000
-
cpe:2.3:a:adobe:acrobat_dc:17.009.20044
-
cpe:2.3:a:adobe:acrobat_dc:17.009.20058
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30059
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30065
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30066
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30068
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30070
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30078
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30079
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30080
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30096
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30099
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30102
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30105
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30106
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30110
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30113
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30120
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30127
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30138
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30140
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30142
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30143
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30144
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30150
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30152
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30155
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30156
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30166
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30171
-
cpe:2.3:a:adobe:acrobat_dc:17.011.30175
-
cpe:2.3:a:adobe:acrobat_dc:17.012.20093
-
cpe:2.3:a:adobe:acrobat_dc:17.012.20095
-
cpe:2.3:a:adobe:acrobat_dc:17.012.20096
-
cpe:2.3:a:adobe:acrobat_dc:17.012.20098
-
cpe:2.3:a:adobe:acrobat_dc:18.0
-
cpe:2.3:a:adobe:acrobat_dc:18.009.20044
-
cpe:2.3:a:adobe:acrobat_dc:18.009.20050
-
cpe:2.3:a:adobe:acrobat_dc:18.011.20035
-
cpe:2.3:a:adobe:acrobat_dc:18.011.20036
-
cpe:2.3:a:adobe:acrobat_dc:18.011.20038
-
cpe:2.3:a:adobe:acrobat_dc:18.011.20040
-
cpe:2.3:a:adobe:acrobat_dc:18.011.20055
-
cpe:2.3:a:adobe:acrobat_dc:18.011.20058
-
cpe:2.3:a:adobe:acrobat_dc:18.011.20063
-
cpe:2.3:a:adobe:acrobat_dc:19.008.20071
-
cpe:2.3:a:adobe:acrobat_dc:19.008.20074
-
cpe:2.3:a:adobe:acrobat_dc:19.008.20080
-
cpe:2.3:a:adobe:acrobat_dc:19.008.20081
-
cpe:2.3:a:adobe:acrobat_dc:19.010.20064
-
cpe:2.3:a:adobe:acrobat_dc:19.010.20069
-
cpe:2.3:a:adobe:acrobat_dc:19.010.20091
-
cpe:2.3:a:adobe:acrobat_dc:19.010.20098
-
cpe:2.3:a:adobe:acrobat_dc:19.010.20099
-
cpe:2.3:a:adobe:acrobat_dc:19.010.20100
-
cpe:2.3:a:adobe:acrobat_dc:19.012.20034
-
cpe:2.3:a:adobe:acrobat_dc:19.012.20035
-
cpe:2.3:a:adobe:acrobat_dc:19.012.20036
-
cpe:2.3:a:adobe:acrobat_dc:19.012.20040
-
cpe:2.3:a:adobe:acrobat_dc:19.021.20047
-
cpe:2.3:a:adobe:acrobat_dc:19.021.20048
-
cpe:2.3:a:adobe:acrobat_dc:19.021.20049
-
cpe:2.3:a:adobe:acrobat_dc:19.021.20056
-
cpe:2.3:a:adobe:acrobat_dc:19.021.20058
-
cpe:2.3:a:adobe:acrobat_dc:19.021.20061
-
cpe:2.3:a:adobe:acrobat_dc:20.006.20034
-
cpe:2.3:a:adobe:acrobat_dc:20.006.20042
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20063
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20065
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20067
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20074
-
cpe:2.3:a:adobe:acrobat_dc:20.012.20041
-
cpe:2.3:a:adobe:acrobat_dc:20.012.20043
-
cpe:2.3:a:adobe:acrobat_dc:20.012.20048
-
cpe:2.3:a:adobe:acrobat_dc:20.013.20064
-
cpe:2.3:a:adobe:acrobat_dc:20.013.20066
-
cpe:2.3:a:adobe:acrobat_dc:20.013.20074
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20135
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20138
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20140
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20142
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20145
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20149
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20150
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20155
-
cpe:2.3:a:adobe:acrobat_dc:21.005.20048
-
cpe:2.3:a:adobe:acrobat_dc:21.005.20054
-
cpe:2.3:a:adobe:acrobat_reader_dc:*
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.008.20082
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.009.20069
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.009.20071
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.009.20077
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.009.20079
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.010.20056
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.010.20059
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.010.20060
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.016.20039
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.016.20041
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.016.20045
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.017.20050
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.017.20053
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.020.20039
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.020.20042
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.023.20053
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.023.20056
-
cpe:2.3:a:adobe:acrobat_reader_dc:15.023.20070
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.000.0000
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.009.20044
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.009.20058
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30059
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30065
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30066
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30068
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30070
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30078
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30079
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30080
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30096
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30099
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30102
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30105
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30106
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30110
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30113
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30120
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30127
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30138
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30140
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30142
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30143
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30144
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30150
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30152
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30156
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30166
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30171
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.011.30175
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.012.20093
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.012.20095
-
cpe:2.3:a:adobe:acrobat_reader_dc:17.012.20098
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.0
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.009.20044
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.009.20050
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.011.20035
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.011.20036
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.011.20038
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.011.20040
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.011.20055
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.011.20058
-
cpe:2.3:a:adobe:acrobat_reader_dc:18.011.20063
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.008.20071
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.008.20074
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.008.20080
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.008.20081
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.010.20064
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.010.20069
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.010.20091
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.010.20098
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.010.20099
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.010.20100
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.012.20034
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.012.20035
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.012.20036
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.012.20040
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.021.20047
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.021.20048
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.021.20049
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.021.20056
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.021.20058
-
cpe:2.3:a:adobe:acrobat_reader_dc:19.021.20061
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.006.20034
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.006.20042
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20063
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20065
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20067
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20074
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.012.20041
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.012.20043
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.012.20048
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.013.20064
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.013.20066
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.013.20074
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20135
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20138
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20140
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20142
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20145
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20149
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20150
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20155
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.005.20048
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.005.20054