CVE-2025-64787 | THREATINT

Description

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to bypass cryptographic protections and gain limited unauthorized write access. Exploitation of this issue does not require user interaction.

PUBLISHED Reserved 2025-11-11 | Published 2025-12-09 | Updated 2025-12-12 | Assigner adobe

LOW: 3.3CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Problem types

Improper Verification of Cryptographic Signature (CWE-347)

Product status

Default status

affected

Any version

affected

References

helpx.adobe.com/security/products/acrobat/apsb25-119.html vendor-advisory

cve.org (CVE-2025-64787)

nvd.nist.gov (CVE-2025-64787)

Download JSON