CVE-2022-28244

CVE-2022-28244 (Adobe Acrobat/Reader DC CSP Bypass) affects Acrobat Reader DC with versions up to 22.001.20085, 20.005.3031x, and 17.012.30205 (and earlier). The issue is a violation of secure design principles: bypassing the Content Security Policy, which could let an attacker trigger arbitraril...

CVE-2022-35672

Adobe Acrobat Reader version 22.001.20085 and earlier, 20.005.30314 and earlier and 17.012.30205 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this...

CVE-2022-24102

Acrobat Reader DC versions 20.001.20085 and earlier, 20.005.3031x and earlier and 17.012.30205 and earlier are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that ...

PT-2022-6712 · Adobe · Acrobat Reader

Name of the Vulnerable Software and Affected Versions: Acrobat Reader DC versions 17.012.30205 through 22.001.20085 Acrobat Reader DC versions 20.005.3031x and earlier Description: The issue is related to an out-of-bounds read vulnerability when parsing a crafted file, which could result in a rea...