APSB16-02 Security Updates Available for Adobe Acrobat and Reader

2016-01-0700:00:00

helpx.adobe.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.171

Percentile

96.2%

JSON

Adobe has released security updates for Adobe Acrobat and Reader for Windows and Macintosh. These updates address critical vulnerabilities that could potentially allow an attacker to take control of the affected system.

Affected configurations

Vulners

Node

adobeacrobat_dcRange≤15.009.20077

adobeacrobat_reader_dcRange≤15.009.20077

adobeacrobat_dcRange≤15.006.30097

adobeacrobat_reader_dcRange≤15.006.30097

adobeacrobat_xiRange≤11.0.13desktop

adobereader_xiRange≤11.0.13desktop

VendorProductVersionCPE
adobeacrobat_dc*cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:*:*:*:*
adobeacrobat_reader_dc*cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:*:*:*:*
adobeacrobat_xi*cpe:2.3:a:adobe:acrobat_xi:*:*:*:*:desktop:*:*:*
adobereader_xi*cpe:2.3:a:adobe:reader_xi:*:*:*:*:desktop:*:*:*

Vendor	Product	Version	CPE
adobe	acrobat_dc	*	cpe:2.3:a:adobe:acrobat_dc::::::::
adobe	acrobat_reader_dc	*	cpe:2.3:a:adobe:acrobat_reader_dc::::::::
adobe	acrobat_xi	*	cpe:2.3:a:adobe:acrobat_xi:::::desktop:::*
adobe	reader_xi	*	cpe:2.3:a:adobe:reader_xi:::::desktop:::*