Adobe Acrobat Reader 数据伪造问题漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDFs. Adobe Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, and 20.005.30803 and earlier versions have a data forgery issue vulnerability...

Adobe Reader < 20.005.30838 / 25.001.20997 Multiple Vulnerabilities (APSB25-119) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 20.005.30838 or 25.001.20997. It is, therefore, affected by multiple vulnerabilities. - Out-of-bounds Read CWE-125 potentially leading to Arbitrary code execution CVE-2025-64899 - Untrusted Search Path CWE-426...

PT-2025-50225

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 20.005.30793 through 20.005.30803 Acrobat Reader versions 24.001.30264 through 24.001.30273 Acrobat Reader version 25.001.20982 Description The software contains an Improper Verification of Cryptographic Signature issue...

Adobe Acrobat Reader DC Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

PT-2025-50224

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 20.005.30793 through 20.005.30803 Acrobat Reader versions 24.001.30264 through 24.001.30273 Acrobat Reader version 25.001.20982 Description Acrobat Reader is susceptible to an Untrusted Search Path issue. This could all...

PT-2025-50226

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 24.001.30264 through 24.001.30273 Acrobat Reader versions 20.005.30793 through 20.005.30803 Acrobat Reader version 25.001.20982 Description Acrobat Reader is affected by an improper verification of cryptographic signatu...

PT-2025-50227

Name of the Vulnerable Software and Affected Versions Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and earlier Description The software contains an out-of-bounds read issue when processing a specially designed file. This could allow an attacker to...

Adobe Acrobat Reader 缓冲区错误漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDFs. A buffer error vulnerability exists in Adobe Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803, and prior versions, which...

NLTK – Multiple CorpusReader classes allow Arbitrary File Read via Path Traversal

This report is not public...

PureRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading

Job seekers looking out for opportunities might instead find their personal devices compromised, as a PureRAT campaign propagated through email leverages Foxit PDF Reader for concealment and DLL side-loading for initial entry...

ValleyRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading

Job seekers looking out for opportunities might instead find their personal devices compromised, as a ValleyRAT campaign propagated through email leverages Foxit PDF Reader for concealment and DLL side-loading for initial entry...

RockyLinux 8 : container-tools:4.0 (RLSA-2023:2802)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2802 advisory. golang: net/http: improper sanitization of Transfer-Encoding header CVE-2022-1705 golang: go/parser: stack exhaustion in all Parse functions CVE-2022-196...

PT-2025-48993

Name of the Vulnerable Software and Affected Versions iOS versions prior to 18.7.5 iPadOS versions prior to 18.7.5 Description A path handling issue exists that may allow modification of protected system files when restoring a maliciously crafted backup file. Early reports suggest a critical OS...

GHSA-MJ73-J457-8X9Q maxminddb's `Reader::open_mmap` unsoundly marks unsafe memmap operation as safe

maxminddb prior to version 0.27 declared Reader::openmmap as safe despite wrapping an inherently unsafe memmap2 operation with no extra step done to guarantee safety. This could have led to undefined behaviour if the file were to be modified on disk while the memory map was still active...

maxminddb's `Reader::open_mmap` unsoundly marks unsafe memmap operation as safe

maxminddb prior to version 0.27 declared Reader::openmmap as safe despite wrapping an inherently unsafe memmap2 operation with no extra step done to guarantee safety. This could have led to undefined behaviour if the file were to be modified on disk while the memory map was still active...

CVE-2025-63365

SoftSea EPUB File Reader 1.0.0.0 is vulnerable to Directory Traversal. The vulnerability resides in the EPUB file processing component, specifically in the functionality responsible for extracting and handling EPUB archive contents...

CVE-2025-63365

SoftSea EPUB File Reader 1.0.0.0 is vulnerable to Directory Traversal. The vulnerability resides in the EPUB file processing component, specifically in the functionality responsible for extracting and handling EPUB archive contents...

SoftSea EPUB File Reader 安全漏洞

SoftSea EPUB File Reader is a software tool from SoftSea for reading eBook files in EPUB format. A security vulnerability exists in SoftSea EPUB File Reader version 1.0.0.0, which originates from a directory traversal problem in the EPUB file handling component...

CVE-2025-63365

SoftSea EPUB File Reader 1.0.0.0 is affected by a Directory Traversal vulnerability in the EPUB processing component that handles archive extraction. The CVE details indicate a LOCAL attack vector with LOW attack complexity, requiring user interaction, and resulting in HIGH impact to confidential...

CVE-2025-63365

SoftSea EPUB File Reader 1.0.0.0 is vulnerable to Directory Traversal. The vulnerability resides in the EPUB file processing component, specifically in the functionality responsible for extracting and handling EPUB archive contents...