CVE-2026-47937
7.4 HIGHAcrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that cou...
Published: 2026-06-09 · Last updated: 2026-06-09
Severity and scoring
- CVSS
- 7.4 HIGH
- Vector
- CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:N
- CWE
- CWE-427
Description
Acrobat Reader versions 24.001.30365, 26.001.21651 and earlier are affected by an Uncontrolled Search Path Element vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Scope is changed.
Source: NVD
References
Related CVEs
Same CWE
- CVE-2026-41567 — Moby is an open source container framework (7.2 HIGH)
- CVE-2026-50033 — Local privilege escalation due to DLL hijacking vulnerability (7.3 HIGH)
- CVE-2026-44682 — Local privilege escalation due to DLL hijacking vulnerability (7.3 HIGH)
- CVE-2026-44609 — Local privilege escalation due to EXE hijacking vulnerability (7.3 HIGH)
- CVE-2026-36574 — A DLL hijacking vulnerability in Wassimulator (GitHub) CactusViewer v2.3.0 allows attackers to escalate privileges and execute arbitrary ... (7.8 HIGH)