Lucene search
K

5 matches found

Zero Day Initiative
Zero Day Initiative
added 2023/08/15 12:0 a.m.31 views

(Pwn2Own) Adobe Acrobat Reader DC Object Prototype Pollution API Restrictions Bypass

This vulnerability allows remote attackers to bypass API restrictions on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

5.3CVSS6.5AI score0.04305EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/08/15 12:0 a.m.22 views

(Pwn2Own) Adobe Acrobat Reader DC AnnotsString Prototype Pollution API Restrictions Bypass Vulnerability

This vulnerability allows remote attackers to bypass API restrictions on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.5AI score0.04326EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/12 12:0 a.m.31 views

CVE-2023-26405 ZDI-CAN-20712: Object Prototype pollution which leads to API Restrictions Bypass

Adobe Acrobat Reader versions 23.001.20093 and earlier and 20.005.30441 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim mu...

7.8CVSS7.9AI score0.04305EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2018/12/17 12:0 a.m.28 views

Adobe Reader DC JavaScript CBSharedReviewCompleteAutomation JavaScript API Restrictions Bypass Vulnerability

This vulnerability allows remote attackers to bypass JavaScript API restrictions on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

2.7CVSS2.5AI score0.04374EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/10/13 12:0 a.m.25 views

Adobe Acrobat Reader DC CBSharedReviewCloseDialog Javascript API Restrictions Bypass Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.7AI score0.0643EPSS
Exploits0References1
Rows per page
Query Builder