PatchSiren cyber security CVE debrief
CVE-2026-47965 Adobe CVE debrief
CVE-2026-47965 is an out-of-bounds write vulnerability in Acrobat Reader versions 24.001.30365, 26.001.21651, and earlier. This vulnerability could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. The CVSS score for this vulnerability is 7.8, and the severity is classified as HIGH.
- Vendor
- Adobe
- Product
- Acrobat Reader
- CVSS
- HIGH 7.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-12
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-12
- Advisory updated
- 2026-06-12
Who should care
Users of Acrobat Reader versions 24.001.30365, 26.001.21651, and earlier should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The vulnerability is caused by an out-of-bounds write issue in Acrobat Reader. This could allow an attacker to execute arbitrary code in the context of the current user.
Defensive priority
HIGH
Recommended defensive actions
- Update Acrobat Reader to the latest version.
- Be cautious when opening files from unknown sources.
Evidence notes
The CVE record and NVD detail for CVE-2026-47965 can be found at [cve-org] and [nvd], respectively. Additional information can be found at [ref-4].
Official resources
-
CVE-2026-47965 CVE record
CVE.org
-
CVE-2026-47965 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-47965 was published on 2026-06-12T18:16:34.913Z and has not been modified since then.