Exit
  • Global community
    • Language:
      • Deutsch
      • English
      • Español
      • Français
      • Português
  • 日本語コミュニティ
  • 한국 커뮤니티
0

Acrobat Reader affected by Apache Log4j Vulnerability, CVE-2021-44228?

Community Beginner ,
Dec 13, 2021 Dec 13, 2021

Is anyone aware if Acrobat Reader is affected by the vulnerability below, and if so what the recommendation is to address it? 

https://nvd.nist.gov/vuln/detail/CVE-2021-44228

TOPICS
Security digital signatures and esignatures , Windows
2.5K
Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Community Expert ,
Dec 14, 2021 Dec 14, 2021

Acrobat Reader is not affected.

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
New Here ,
Dec 15, 2021 Dec 15, 2021

Thanks @Bernd Alheit, is there documentation from Adobe to confirm this? Our IT Security have blocked all Adobe apps until we have written confirmation addressing the vulnerability. 

Could you please point me to where Adobe might update the status of all their apps? I've seen confirmation for Coldfusion and AEM so far.

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Community Expert ,
Dec 15, 2021 Dec 15, 2021

Acrobat Reader doesn't use Java!

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
New Here ,
Dec 15, 2021 Dec 15, 2021

Thanks @Bernd Alheit how about DC? Are all the Acrobat products the same?

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Community Expert ,
Dec 15, 2021 Dec 15, 2021

Yes.

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Adobe Employee ,
Dec 15, 2021 Dec 15, 2021

Hi Bryski - As this investigation is ongoing, I would reach our to Adobe Customer Support directly for confirmation. Please see: https://helpx.adobe.com/security/alertus.html 

 

Adobe does have a security advisory posted for Log4J: https://helpx.adobe.com/security/products/log4j-2-advisory.html 

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines
Adobe Employee ,
Dec 17, 2021 Dec 17, 2021
LATEST

Latest advisory for CVE-2021-44228 is here: https://helpx.adobe.com/security/products/log4j.html

Translate
Report
Community guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting. Learn more
community guidelines