Adobe Warns Windows and Mac Users of Zero-Day Vulnerability in Acrobat and Reader

Adobe announced a zero-day vulnerability in its Acrobat and Reader applications on Thursday. The vulnerability affects users on Windows and Mac operating systems. Forbes reported that hackers are actively exploiting the flaw in attacks targeting these users.

Adobe stated that the issue involves a specific security gap allowing unauthorized access. The company has released patches for the affected versions of the software. Users must install the updates to mitigate risks from the exploitation.

The zero-day vulnerability was discovered during ongoing security monitoring.

It enables attackers to execute malicious code through manipulated PDF files. Adobe's advisory specifies that the flaw impacts versions prior to the latest patch release. Forbes reported that the attacks began recently, with hackers using the vulnerability to target Acrobat and Reader installations.

No details on the number of affected users or specific attack vectors were provided in the announcement. Adobe urged immediate action to prevent potential data breaches or system compromises.

advised users to update their software within 72 hours.

The update process is available through the Adobe Creative Cloud app or direct download from the company's website. For users unable to update immediately, Adobe recommended disabling JavaScript in PDF files as a temporary measure. The vulnerability poses risks to individuals and organizations relying on Acrobat and Reader for document handling.

Affected parties include businesses processing sensitive PDFs and general users opening emailed or downloaded files. Adobe's security team continues to monitor for further exploitations.

vulnerabilities represent unpatched security flaws known only to attackers at the time of exploitation.

This incident follows a series of similar alerts in the software industry. Adobe has committed to providing additional guidance as the situation develops.