Adobe Reader Vulnerability - 20260413001

Overview

Adobe has released addressed a critical security update for Adobe Acrobat and Reader for Windows and macOS. Successful exploitation could lead to arbitrary code execution.

What is vulnerable?

Product(s) Affected	Version(s)	CVE	CVSS	Severity
Adobe Reader Adobe Reader DC Acrobat 2024	26.001.21367 and earlier 26.001.21367 and earlier 24.001.30356 and earlier	2026-34621	8.6	High

What has been observed?

The WASOC has observed reports of active exploitation in the wild for one or more of the mentioned items. The WASOC has not received any reports of exploitation of this vulnerability on Western Australian Government networks at the time of writing.

Recommendation

The WASOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframes (refer Patch Management):

• Adobe: https://helpx.adobe.com/security/products/acrobat/apsb26-43.html

Additional References

• SecurityOnline article: https://securityonline.info/adobe-reader-zero-day-pdf-exploit-yummy-uwu/