Adobe Patches Zero-Day Vulnerability in PDF Software

Adobe released a security patch to fix a zero-day vulnerability in its PDF software that had been actively exploited by hackers for several months. The exploit was used in targeted attacks since at least November 2025, though the exact number of compromised victims remains unclear. The flaw allowed threat actors to execute malicious code via specially crafted PDF files. No specific CVE identifier or technical details about the vulnerability were disclosed in the report. The campaign’s scope and affected Adobe product versions were not specified.