CVE-2025-64785
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-64785, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-12-09

Last updated on: 2026-04-28

Assigner: Adobe Systems Incorporated

Description

Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. If the application uses a search path to locate critical resources such as programs, an attacker could modify that search path to point to a malicious program, which the targeted application would then execute. Exploitation of this issue requires user interaction in that the user needs to open a malicious file.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-12-09
Last Modified
2026-04-28
Generated
2026-07-06
AI Q&A
2025-12-10
EPSS Evaluated
2026-07-05
NVD

Affected Vendors & Products

Showing 7 associated CPEs
Vendor Product Version / Range
adobe acrobat_dc to 25.001.20997 (inc)
adobe acrobat_reader_dc to 25.001.20997 (inc)
adobe acrobat_reader 24.001.30273
adobe acrobat_reader 25.001.20982
adobe acrobat_reader 20.005.30793
adobe acrobat_reader 24.001.30264
adobe acrobat_reader 20.005.30803

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-426 The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Mitigation Strategies

To mitigate this vulnerability, update Acrobat Reader to a version later than 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, or 20.005.30803. Avoid using untrusted search paths for critical resources and ensure that the application does not execute programs from locations that can be modified by attackers.

Executive Summary

This vulnerability is an Untrusted Search Path issue in certain versions of Acrobat Reader. It allows attackers to execute arbitrary code by modifying the search path that the application uses to locate critical resources. When Acrobat Reader searches for programs or resources, an attacker can insert a malicious program in the search path, causing the application to execute the malicious code instead of the intended resource. This can happen without any user interaction.

Impact Analysis

The vulnerability can allow attackers to execute arbitrary code with the privileges of the current user. This means an attacker could potentially take control of the affected system, access sensitive information, install malware, or perform other malicious actions without the user's knowledge or consent.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-64785. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart