Dossier
Adobe Reader
Coverage of Adobe Reader in the Nexus archive.
- Adobe Patches Actively Exploited Zero-Day That Lingered for Months
Adobe has patched a zero-day vulnerability in Acrobat and Reader that was actively exploited by attackers using malicious PDF files for at least four months. The security flaw highlights ongoing risks in software exploitation despite patches.
- Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025
A zero-day vulnerability in Adobe Reader has been exploited via malicious PDFs since December 2025, as reported by EXPMON's Haifei Li. The first malicious artifact, 'Invoice540.pdf', appeared on VirusTotal on November 28, 2025.
- Hackers exploiting Acrobat Reader zero-day flaw since December
Attackers have been exploiting a zero-day vulnerability in Adobe Reader since December using maliciously crafted PDF documents. The flaw allows unauthorized access and potential data theft through compromised files.