CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Hacker News•added 2026/04/13 1:1 p.m.•17 views

⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More

Monday is back, and the weekend’s backlog of chaos is officially hitting the fan. We are tracking a critical zero-day that has been quietly living in your PDFs for months, plus some aggressive state-sponsored meddling in infrastructure that is finally coming to light. It is one of those mornings...

10CVSS8AI score0.93421EPSS

Exploits81

Malwarebytes•added 2026/04/13 11:38 a.m.•5 views

Simply opening a PDF could trigger this Adobe Reader zero-day

Opening the wrong PDF in Adobe Reader was enough to let criminals quietly spy on your computer and unleash more attacks, even though everything looked normal. A researcher analyzed a malicious PDF and found that it abused a previously unknown flaw a “zero‑day” in Adobe Acrobat Reader. When a vict...

NCSC•added 2026/04/13 9:38 a.m.•1 views

Exploits4

Vulnerability fixed in Adobe Acrobat

Adobe has fixed a vulnerability in Adobe Acrobat DC, Actobat Reader DC and Acrobat 2024. A malicious party can exploit the vulnerability to execute arbitrary code on the victim's system. To do this, the malicious party needs to get the victim to open a rogue PDF file. A rogue PDF file uploaded on...

8.6CVSS6.4AI score0.0966EPSS

OSV•added 2026/04/13 5:43 a.m.•1 views

BIT-GOLANG-2026-32288 Unbounded allocation for old GNU sparse in archive/tar

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

5.5CVSS5.8AI score0.00004EPSS

Exploits0References5

VulnCheck KEV•added 2026/04/13 12:0 a.m.•3 views

VulnCheck KEV: CVE-2020-9715

Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution...

9.3CVSS6.4AI score0.77499EPSS

In wildExploits2References2

CISA KEV Catalog•added 2026/04/13 12:0 a.m.•12 views

Adobe Acrobat and Reader Prototype Pollution Vulnerability

Adobe Acrobat and Reader contain a prototype pollution vulnerability that allows for arbitrary code execution...

8.6CVSS6AI score0.0966EPSS

In wildExploits4

The Hacker News•added 2026/04/12 4:25 a.m.•8 views

Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621

Adobe has released emergency updates to fix a critical security flaw in Acrobat Reader that has come under active exploitation in the wild. The vulnerability, assigned the CVE identifier CVE-2026-34621 , carries a CVSS score of 8.6 out of 10.0. Successful exploitation of the flaw could allow an...

EUVD•added 2026/04/11 9:30 a.m.•2 views

Exploits4

EUVD-2026-21675

9.6CVSS6.3AI score0.0966EPSS

NVD•added 2026/04/11 7:16 a.m.•2 views

CVE-2026-34621

8.6CVSS0.0966EPSS

Vulnrichment•added 2026/04/11 6:45 a.m.•5 views

CVE-2026-34621 Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321)

8.6CVSS6.3AI score0.0966EPSS

Cvelist•added 2026/04/11 6:45 a.m.•33 views

CVE-2026-34621 Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321)

8.6CVSS0.0966EPSS

CVE•added 2026/04/11 6:45 a.m.•157 views

CVE-2026-34621

CVE-2026-34621 — Adobe Acrobat/Reader Prototype Pollution affects Acrobat Reader DC/Acrobat DC on Windows and macOS. Affected: Acrobat Reader DC 26.001.21367 and earlier; Acrobat DC 26.001.21367 and earlier; Acrobat 2024 24.001.30356 and earlier. Root cause: Improperly Controlled Modification of ...

8.6CVSS6.3AI score0.0966EPSS

In wildExploits4References2Affected Software2

ATTACKERKB•added 2026/04/11 6:45 a.m.•5 views

CVE-2026-34621

9.6CVSS6.3AI score0.0966EPSS

Tenable Nessus•added 2026/04/11 12:0 a.m.•16 views

Adobe Reader < 26.001.21411 Vulnerability (APSB26-43)

The version of Adobe Reader installed on the remote Windows host is a version prior to 26.001.21411. It is, therefore, affected by a vulnerability. - Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes...

CNNVD•added 2026/04/11 12:0 a.m.•2 views

Adobe Acrobat Reader 安全漏洞

Adobe Acrobat Reader is a PDF viewer developed by Adobe Inc. in the United States. This software is used for printing, signing, and annotating PDF documents. Versions of Adobe Acrobat Reader such as 24.001.30356, 26.001.21367, and earlier versions have security vulnerabilities. These...

8.6CVSS7.7AI score0.0966EPSS

Kaspersky•added 2026/04/11 12:0 a.m.•4 views

KLA90977 ACE vulnerability in Adobe Acrobat Reader

A remote code execution vulnerability was found in Adobe Acrobat Reader. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories APSB26-43 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware i...

8.6CVSS8AI score0.0966EPSS

Exploits4References5

Tenable Nessus•added 2026/04/11 12:0 a.m.•1 views

Adobe Reader < 26.001.21411 Vulnerability (APSB26-43) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 26.001.21411. It is, therefore, affected by a vulnerability. - Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes...