AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

🔥 This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)

CVE-2026-34621: Adobe Acrobat and Reader Prototype Pollution Vulnerability

infovulnerability

🔥 Actively Exploited

security

Source: CISA Known Exploited VulnerabilitiesApril 12, 2026CVE-2026-34621

Summary

Adobe Acrobat and Reader contain a prototype pollution vulnerability (a type of bug where an attacker can modify an object's properties to inject malicious code) that allows attackers to run arbitrary code execution (running commands they shouldn't be able to run) on affected systems. This vulnerability is currently being actively exploited by attackers in the wild, making it a serious threat.

Solution / Mitigation

Apply mitigations per Adobe's vendor instructions (available at https://helpx.adobe.com/security/products/acrobat/apsb26-43.html), follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Patch Available

Yes

Exploit Maturity

🔥 Actively Exploited

Disclosure Date

April 12, 2026

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-1321

Monthly digest — independent AI security research

Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-34621

First tracked: April 13, 2026 at 02:00 PM

Classified by LLM (prompt v3) · confidence: 95%