Path Traversal Vulnerability in Acrobat Reader for Android: Arbitrary Code Execution

Path Traversal Vulnerability in Acrobat Reader for Android: Arbitrary Code Execution

CVE-2021-40724 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Acrobat Reader for Android versions 21.8.0 (and earlier) are affected by a Path traversal vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

Learn more about our Cis Benchmark Audit For Google Android.