CVE-2020-3799: 
Adobe Acrobat Reader Continuous vulnerability analysis and mitigation

Adobe Acrobat and Reader versions 2020.006.20034 and earlier, 2017.011.30158 and earlier, and 2015.006.30510 and earlier were found to contain a stack-based buffer overflow vulnerability. The vulnerability was assigned CVE-2020-3799 and was disclosed in March 2020. This security flaw affects multiple versions of Adobe Acrobat and Reader across different operating systems including Windows and macOS (CVE Details).

The vulnerability is classified as a stack-based buffer overflow (CWE-787). It received a CVSS v3.1 base score indicating high severity with the following vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. This suggests the vulnerability is network-accessible, requires low attack complexity, needs no privileges, and can result in high impacts to confidentiality, integrity, and availability (NVD Change Records).

Successful exploitation of this vulnerability could lead to arbitrary code execution on affected systems. Given the CVSS scoring, the vulnerability could potentially allow attackers to compromise the confidentiality, integrity, and availability of the target system (Adobe Security Bulletin).

Adobe has released security updates to address this vulnerability. Users are advised to update to the latest versions of the affected software. The fix was included in versions after 2020.006.20034 for the continuous track and after the respective version numbers for the classic track (Adobe Security Bulletin).