CVE-2022-27800: Acrobat Reader DC versions 22.001.20085 (and earlier),

Acrobat Reader DC versions 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) are affected by a use-after-free vulnerability in the processing of annotations that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

• EPSS 8.8% (92.7% percentile)
• CVSS 7.8 high

Detection rules

• Potential Nimbuspwn Exploit CVE-2022-29799 and CVE-2022-27800 high

Browse the CVE database

Read the full analysis on IntelFusions