6 matches found
CVE-2026-47921
Acrobat Reader is affected by a Use After Free (CWE-416) in versions 24.001.30365, 26.001.21651 and earlier, potentially allowing arbitrary code execution in the context of the current user. Exploitation requires user interaction (opening a malicious file). Root cause is use-after-free in the aff...
CVE-2026-34662 Illustrator | NULL Pointer Dereference (CWE-476)
Illustrator versions 29.8.6, 30.3 and earlier are affected by a NULL Pointer Dereference vulnerability that could result in an application denial-of-service. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue...
CVE-2025-12839
CVE-2025-12839 affects Academy Software Foundation OpenEXR (EXR parsing) with a heap-based buffer overflow that enables remote code execution when a user opens a malicious EXR file/page. Root cause is inadequate validation of user-supplied data length during EXR parsing. In connected advisories, ...
CVE-2024-39422
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must op...
CVE-2023-38113
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...
CVE-2023-22240
Adobe Acrobat Reader versions 22.003.20282 and earlier, 22.003.20281 and earlier and 20.005.30418 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction...