Adobe Patches Reader Zero-Day Exploited for Months

Adobe has released a patch for a critical zero-day vulnerability (CVE-2026-34621) in Adobe Reader that threat actors actively exploited for months before disclosure. The vulnerability allows arbitrary code execution, giving attackers the ability to run malicious code on affected systems. This is a serious risk for organizations using Adobe Reader, as exploitation can lead to complete system compromise, data theft, and network infiltration. Immediate patching is strongly recommended. Users should update Adobe Reader to the latest patched version and exercise caution with PDF attachments from untrusted sources to mitigate the risk of infection.

The vulnerability is tracked as CVE-2026-34621 and Adobe has confirmed that it can be exploited for arbitrary code execution. The post Adobe Patches Reader Zero-Day Exploited for Months appeared first on SecurityWeek .

Adobe has released a patch for a critical zero-day vulnerability (CVE-2026-34621) in Adobe Reader that threat actors actively exploited for months before disclosure. The vulnerability allows arbitrary code execution, giving attackers the ability to run malicious code on affected systems. This is a serious risk for organizations using Adobe Reader, as exploitation can lead to complete system compromise, data theft, and network infiltration. Immediate patching is strongly recommended. Users should update Adobe Reader to the latest patched version and exercise caution with PDF attachments from untrusted sources to mitigate the risk of infection. The vulnerability is tracked as CVE-2026-34621 and Adobe has confirmed that it can be exploited for arbitrary code execution. The post Adobe Patches Reader Zero-Day Exploited for Months appeared first on SecurityWeek . The vulnerability is tracked as CVE-2026-34621 and Adobe has confirmed that it can be exploited for arbitrary code execution. The post Adobe Patches Reader Zero-Day Exploited for Months appeared first on SecurityWeek .