CVE-2025-64785

🔴 HIGH

Published

Dec 09, 2025

Last Modified

Dec 12, 2025

Views

Bookmarks

Description

Request Expert Review

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. If the application uses a search path to locate critical resources such as programs, an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. Exploitation of this issue does not require user interaction.

Affected Products (4)

adobe - acrobat

Version: *

adobe - acrobat_dc

Version: *

adobe - acrobat_reader

Version: *

adobe - acrobat_reader_dc

Version: *

CVSS Scores

CVSS 3.1 7.8

7.8

HIGH

CVSS 2.0 7.8

References

helpx.adobe.com

Additional Information

Source: psirt@adobe.com
State: Analyzed

Related CVEs

CVE-2025-66177

HIGH

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision NVR/DVR/CVR/IPC models. If exploited, an attacker on t...

Score: 8.8

CVE-2025-66176

HIGH

There is a Stack overflow Vulnerability in the device Search and Discovery feature of Hikvision Access Control Products. If exploited, an attacker on...

Score: 8.8

CVE-2026-0514

MEDIUM

Due to a Cross-Site Scripting (XSS) vulnerability in SAP Business Connector, an unauthenticated attacker could craft a malicious link. When an unsuspe...

Score: 6.1

CVE-2026-0513

MEDIUM

Due to an Open Redirect Vulnerability in SAP Supplier Relationship Management (SICF Handler in SRM Catalog), an unauthenticated attacker could craft a...

Score: 4.7

CVE-2026-0511

HIGH

SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks for an authenticated user, resulting in escalation o...

Score: 8.1

CVE-2026-0510

LOW

The User Management Engine (UME) in NetWeaver Application Server for Java (NW AS Java) utilizes an obsolete cryptographic algorithm for encrypting Use...

Score: 3.0

Share CVE-2025-64785

Share on Social Media

Copy Link

Embed Code

HTML Embed (for websites/blogs)

Markdown (for GitHub/Discord)

Request Expert Analysis

Request a professional security analysis for CVE-2025-64785 from our verified experts.

Credits System

Use your credits to get expert analysis from verified security professionals. Purchase more credits anytime!

Priority Level

SLA Acceleration (50% faster delivery)

Add 3 credits for accelerated delivery

Additional Context (Optional)

Base Cost: 8 credits

Priority Upgrade: + credits

SLA Acceleration: +3 credits

Total Cost:

Your Balance:

Insufficient Credits

You need more credits to submit this request.

Buy Credits

CVE-2025-64785

Description

Affected Products (4)

adobe - acrobat

adobe - acrobat_dc

adobe - acrobat_reader

adobe - acrobat_reader_dc

CVSS Scores

References

Additional Information

Related CVEs

CVE-2025-66177

CVE-2025-66176

CVE-2026-0514

CVE-2026-0513

CVE-2026-0511

CVE-2026-0510

Share CVE-2025-64785

Share on Social Media

Copy Link

Embed Code

Request Expert Analysis

Credits System

Insufficient Credits

Report Analysis