MDR
Solutions
Partners
About
Resources
Affected Environment
Adobe Acrobat DC, Acrobat Reader DC, and Acrobat 2024 are affected in versions at or below the listed builds. Any users with these versions may be exposed.
Threat Overview
Zero-day CVE‑2026‑34621 allows arbitrary code execution via malicious PDFs in Adobe Acrobat and Reader. Exploitation is already observed in the wild.
Exposure Timeline
Adobe has disclosed the vulnerability and released a security update as of 13 April 2026. Exposure persists until affected versions are updated.
Attack Surface
Endpoints with vulnerable Acrobat or Reader that can open external PDF files form the main exposure. User interaction is required to open a malicious file.
Technical Root Cause
The issue is a prototype pollution flaw in Acrobat/Reader that allows modification of object prototype attributes. This can lead to arbitrary code execution.
Exploitation PathwayAttackers deliver crafted PDFs, such as invoice lures, to victims. When opened in a vulnerable client, code runs in the context of the current user.
Operational Impact
An attacker could install programs, view, change, or delete data, or create new accounts with the user’s rights. Impact severity depends on local privileges.
Strategic Impact
Unpatched systems increase risk of endpoint compromise via common document workflows. This undermines trust in email, document, and invoicing processes.
Required Mitigation
Promptly apply Adobe security updates to all affected versions after testing. Enforce least privilege, automated patching, and regular vulnerability scanning.
Incident Response Guidance
Search for listed hashes, domains, and IPs linked to Adobe Reader attacks. If indicators are found, treat as potential compromise and follow standard IR process.
References
Refer to Adobe security bulletin APSB26‑43 for official guidance and patches. See the cited Sophos analysis for observed exploitation details and context.
Trusted by clients worldwide
Led by human expertise and powered by the VisionX platform, we provide you with a 24/7 unbeatable Managed Detection & Response capability giving you transparent and consolidated security solutions.
.jpg)