A critical zero-day vulnerability in Adobe Reader, tracked as CVE-2026-34621, has been exploited by attackers for months, allowing for arbitrary code execution. Adobe has now released a patch to address this issue, which can be used to gain control over affected systems. The vulnerability is particularly concerning as it can be leveraged to execute malicious code, potentially leading to data breaches and other security incidents. The fact that this vulnerability has been exploited for an extended period highlights the importance of keeping software up to date with the latest security patches1. Organizations should prioritize patching this vulnerability based on their exposure and evidence of exploitation. This disclosure expands the active attack surface, making it essential for practitioners to take immediate action to protect their systems. So what matters most to security professionals is the need to apply this patch promptly to prevent further exploitation and potential security breaches.