CVE-2024-20747: 
Adobe Acrobat Reader Continuous vulnerability analysis and mitigation

CVE-2024-20747 is an out-of-bounds read vulnerability affecting Adobe Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier. The vulnerability was discovered in the font file processing functionality of Adobe Acrobat Reader, specifically in handling OpenType font formats. The issue was discovered by KPC of Cisco Talos and was publicly disclosed on February 15, 2024, after being reported to Adobe on January 11, 2024 (Talos Report).

The vulnerability exists in the processing of OpenType font files embedded in PDFs, specifically when handling CFF2 and maxp (Maximum Profile) tables. The issue occurs when the value of the numGlyphs field in the maxp table is greater than CharStringsCount in the CFF2 table, leading to an out-of-bounds read condition. The vulnerability has been assigned a CVSS v3.1 base score of 5.5 (Medium) with vector CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N, and is classified as CWE-125 (Out-of-bounds Read) (Talos Report).

The vulnerability could lead to the disclosure of sensitive memory contents. Due to the complex interactions between PDF reader and font subcomponents, especially with the JavaScript engine present, an attacker could potentially access sensitive information from arbitrary memory locations. This could aid in further exploitation and bypass security mitigations such as ASLR (Talos Report).

Adobe has released patches to address this vulnerability through their security bulletin APSB24-07. Users are advised to update their Adobe Acrobat and Reader installations to the latest versions available through the official Adobe security bulletin (Adobe Advisory).