CVE-2026-34621
On April 12, 2026, Adobe published a security advisory to address a critical vulnerability in the following products: Acrobat Mac – versions prior to 24.001.30360 Acrobat Windows – versions prior to 24.001.30362 Acrobat DC – versions prior to 26.001.21411 Acrobat Reader DC – versions prior to 26.001.21411 Adobe is aware of CVE-2026-34621 being exploited in the wild. Update 1 On April 13, 2026, Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2026-34621 to their Known Exploited Vulnerabilities (KEV) Database. The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.
EPSS 11.03% · 93.6th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Acrobat Windows – versions prior to 24.001.30362 | |
| Acrobat | Acrobat DC – versions prior to 26.001.21411 | |
| Acrobat | Acrobat Reader DC – versions prior to 26.001.21411 | |
| Acrobat | Acrobat Mac – versions prior to 24.001.30360 |
Timeline
- Jan 21, 2026 PoC Published
- Apr 11, 2026 CVE Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
- Apr 11, 2026 PoC Published
References
- https://cyber.gc.ca/en/alerts-advisories/adobe-acrobat-security-advisory-av26-340 advisory
- https://helpx.adobe.com/security/products/acrobat/apsb26-43.html vendor
- https://helpx.adobe.com/security.html vendor
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2026-34621 advisory