Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-4438
HistoryJul 15, 2015 - 2:59 p.m.

CVE-2015-4438

2015-07-1514:59:05
[email protected]
web.nvd.nist.gov
34
adobe
reader
acrobat
cve-2015-4438
security
vulnerability
bypass
javascript
api
execution
restrictions
windows
os x

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

89.0%

JSON

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass JavaScript API execution restrictions via unspecified vectors, a different vulnerability than CVE-2015-4435, CVE-2015-4441, CVE-2015-4445, CVE-2015-4447, CVE-2015-4451, CVE-2015-4452, CVE-2015-5085, and CVE-2015-5086.

Affected configurations

NVD
Node
adobeacrobatRange10.010.1.15
OR
adobeacrobatRange11.0.011.0.12
OR
adobeacrobat_dcRange15.006.3003315.006.30060classic
OR
adobeacrobat_dcRange15.007.2003315.008.20082continuous
OR
adobeacrobat_readerRange10.010.1.15
OR
adobeacrobat_readerRange11.0.011.0.12
OR
adobeacrobat_reader_dcRange15.006.3003315.006.30060classic
OR
adobeacrobat_reader_dcRange15.007.2003315.008.20082continuous
AND
applemacosMatch-
OR
microsoftwindowsMatch-

Related

cve 8
prion 9
cvelist 9
nvd 9
checkpoint_advisories 9
zdi 8
nessus 4
openvas 4
securityvulns 1
kaspersky 1
cve
cve
CVE-2015-4447
2015-07-15 14:59:10
CVE-2015-4452
2015-07-15 14:59:15
CVE-2015-4435
2015-07-15 14:59:04
prion
prion
Design/Logic Flaw
2015-07-15 14:59:00
Design/Logic Flaw
2015-07-15 14:59:00
Design/Logic Flaw
2015-07-15 14:59:00
cvelist
cvelist
CVE-2015-4445
2015-07-15 14:00:00
CVE-2015-4451
2015-07-15 14:00:00
CVE-2015-5085
2015-07-15 14:00:00
nvd
nvd
CVE-2015-4441
2015-07-15 14:59:06
CVE-2015-4438
2015-07-15 14:59:05
CVE-2015-5086
2015-07-15 14:59:17
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat and Reader Privilege Escalation (APSB15-15: CVE-2015-4438)
2015-08-20 00:00:00
Adobe Acrobat And Reader JavaScript API Code Execution (APSB15-15: CVE-2015-4452)
2015-08-23 00:00:00
Adobe Acrobat And Reader JavaScript API Code Execution (APSB15-15: CVE-2015-4435)
2015-08-23 00:00:00
zdi
zdi
Adobe Reader ANSendForReview Javascript API Restrictions Bypass Vulnerability
2015-07-14 00:00:00
Adobe Acrobat Reader ANStartApproval Javascript API Restrictions Bypass Vulnerability
2015-07-14 00:00:00
Adobe Reader CBBBRInit Javascript API Restrictions Bypass Vulnerability
2015-07-14 00:00:00
nessus
nessus
Adobe Reader < 10.1.15 / 11.0.12 / 2015.006.30060 / 2015.008.20082 Multiple Vulnerabilities (APSB15-15)
2015-07-16 00:00:00
Adobe Reader < 10.1.15 / 11.0.12 / 2015.006.30060 / 2015.008.20082 Multiple Vulnerabilities (APSB15-15) (Mac OS X)
2015-07-16 00:00:00
Adobe Acrobat < 10.1.15 / 11.0.12 / 2015.006.30060 / 2015.008.20082 Multiple Vulnerabilities (APSB15-15) (Mac OS X)
2015-07-16 00:00:00
openvas
openvas
Adobe Acrobat Multiple Vulnerabilities - 01 (Jul 2015) - Windows
2015-07-21 00:00:00
Adobe Reader Multiple Vulnerabilities - 01 (Jul 2015) - Mac OS X
2015-07-21 00:00:00
Adobe Reader Multiple Vulnerabilities - 01 (Jul 2015) - Windows
2015-07-21 00:00:00
securityvulns
securityvulns
Adobe Reader / Acrobat multiple security vulnerabilities
2015-07-19 00:00:00
kaspersky
kaspersky
KLA10628 Multiple vulnerabilities in Adobe Acrobat
2015-07-14 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.3 Medium

AI Score

Confidence

Low

0.02 Low

EPSS

Percentile

89.0%

JSON
Related for CVE-2015-4438
cve8prion9cvelist9nvd9checkpoint_advisories9zdi8nessus4openvas4securityvulns1kaspersky1