Vulnerability Details CVE-2021-39858
Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of arbitrary memory information in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.0%
CVSS Severity
CVSS v3 Score 3.3
CVSS v2 Score 4.3
References
Products affected by CVE-2021-39858
-
cpe:2.3:a:adobe:acrobat:20.001.30005
-
cpe:2.3:a:adobe:acrobat:20.001.30010
-
cpe:2.3:a:adobe:acrobat:20.001.30018
-
cpe:2.3:a:adobe:acrobat:20.001.30020
-
cpe:2.3:a:adobe:acrobat:20.001.30025
-
cpe:2.3:a:adobe:acrobat:20.001.30159
-
cpe:2.3:a:adobe:acrobat:20.004.30005
-
cpe:2.3:a:adobe:acrobat:20.004.30006
-
cpe:2.3:a:adobe:acrobat_2017:*
-
cpe:2.3:a:adobe:acrobat_dc:20.006.20034
-
cpe:2.3:a:adobe:acrobat_dc:20.006.20042
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20063
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20065
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20067
-
cpe:2.3:a:adobe:acrobat_dc:20.009.20074
-
cpe:2.3:a:adobe:acrobat_dc:20.012.20041
-
cpe:2.3:a:adobe:acrobat_dc:20.012.20043
-
cpe:2.3:a:adobe:acrobat_dc:20.012.20048
-
cpe:2.3:a:adobe:acrobat_dc:20.013.20064
-
cpe:2.3:a:adobe:acrobat_dc:20.013.20066
-
cpe:2.3:a:adobe:acrobat_dc:20.013.20074
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20135
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20138
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20140
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20142
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20145
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20149
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20150
-
cpe:2.3:a:adobe:acrobat_dc:21.001.20155
-
cpe:2.3:a:adobe:acrobat_dc:21.005.20048
-
cpe:2.3:a:adobe:acrobat_dc:21.005.20054
-
cpe:2.3:a:adobe:acrobat_dc:21.005.20058
-
cpe:2.3:a:adobe:acrobat_dc:21.005.20060
-
cpe:2.3:a:adobe:acrobat_reader:20.001.30005
-
cpe:2.3:a:adobe:acrobat_reader:20.001.30010
-
cpe:2.3:a:adobe:acrobat_reader:20.001.30018
-
cpe:2.3:a:adobe:acrobat_reader:20.001.300183
-
cpe:2.3:a:adobe:acrobat_reader:20.001.30020
-
cpe:2.3:a:adobe:acrobat_reader:20.001.30025
-
cpe:2.3:a:adobe:acrobat_reader:20.004.30005
-
cpe:2.3:a:adobe:acrobat_reader:20.004.30006
-
cpe:2.3:a:adobe:acrobat_reader_2017:*
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.006.20034
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.006.20042
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20063
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20065
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20067
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.009.20074
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.012.20041
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.012.20043
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.012.20048
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.013.20064
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.013.20066
-
cpe:2.3:a:adobe:acrobat_reader_dc:20.013.20074
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20135
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20138
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20140
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20142
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20145
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20149
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20150
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.001.20155
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.005.20048
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.005.20054
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.005.20058
-
cpe:2.3:a:adobe:acrobat_reader_dc:21.005.20060
-
cpe:2.3:o:apple:macos:-
-
cpe:2.3:o:microsoft:windows:-