216.73.217.176

CVE-2025-64786

· Published 09/12/2025 21:15 · Modified 12/12/2025 19:36

Labels: CVE-2025-64786 2025-12-09CVE-2025-64786CWE-347[email protected]

Essential information

Published
09/12/2025 21:15
Modified
12/12/2025 19:36
Author
Creator
CVSS
3.3 LOW (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

CVSS metrics

Description

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Improper Verification of Cryptographic Signature vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to gain limited unauthorized write access. Exploitation of this issue does not require user interaction.

NVD status

Status
Analyzed — CVE has had analysis completed and all data associations made.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
adobe / acrobat cpe:2.3:a:adobe:acrobat:*:*:*:*:classic:*:*:*
adobe / acrobat dc cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*
adobe / acrobat reader cpe:2.3:a:adobe:acrobat_reader:*:*:*:*:classic:*:*:*
adobe / acrobat reader dc cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*
adobe / acrobat cpe:2.3:a:adobe:acrobat:*:*:*:*:classic:*:*:*
microsoft / windows cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
adobe / acrobat cpe:2.3:a:adobe:acrobat:*:*:*:*:classic:*:*:*
apple / macos cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

References