1799 matches found
CVE-2021-28550
CVE-2021-28550 is an Adobe Acrobat/Reader Use-After-Free vulnerability that allows arbitrary code execution in the context of the current user when a user opens a crafted PDF. Affected products include Acrobat Reader DC (versions 2021.001.20150 and earlier), 2020.001.30020 and earlier, and 2017.0...
CVE-2021-21017
CVE-2021-21017 affects Adobe Acrobat/Reader (DC Continuous and prior releases) with a heap-based buffer overflow that could allow arbitrary code execution in the user’s context after opening a malicious file. The linked exploit analyses describe a flaw in URL/baseURL handling within PDFs (potenti...
CVE-2018-4990
Adobe Acrobat and Reader (various 2015–2018 era builds) contain a Double Free vulnerability in the JavaScript engine that could allow arbitrary code execution in the context of the current user when exploited. Affected versions include 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2...
CVE-2023-26369
Adobe Acrobat/Reader CVE-2023-26369 is an out-of-bounds write vulnerability that can enable arbitrary code execution in the context of the current user. Affected are Acrobat Reader 23.003.20284 and earlier, 20.005.30516 and earlier, and 20.005.30514 and earlier. Exploitation requires user interac...
CVE-2018-16042
CVE-2018-16042 is a security bypass affecting Adobe Acrobat and Reader versions listed (2019.008.20081/20080, 2017.011.30106/30105, 2015.006.30457/30456, and related builds). The vulnerability’s impact is information disclosure if exploited. The provided sources indicate a bypass issue without de...
CVE-2023-21608
Adobe Acrobat Reader DC/Reader affected by a Use-After-Free in resetForm leading to arbitrary code execution when a user opens a malicious file. Impact: code execution in the user context (high). Affected versions include 22.003.20282 and earlier for Windows/macOS and 20.005.30418 and earlier. Ro...
CVE-2021-28562
CVE-2021-28562 affects Acrobat Reader DC, versions including 2021.001.20150 and earlier, 2020.001.30020 and earlier, and 2017.011.30194 and earlier. The issue is a Use-After-Free in handling search queries via Javascript, allowing an unauthenticated attacker to achieve arbitrary code execution in...
CVE-2023-21579
CVE-2023-21579 affects Adobe Acrobat Reader, specifically versions 22.003.20282 and earlier, 22.003.20281 and earlier, and 20.005.30418 and earlier. The issue is an Integer Overflow or Wraparound in the font parsing code that can lead to arbitrary code execution in the context of the current user...
CVE-2026-34621
CVE-2026-34621 — Adobe Acrobat/Reader Prototype Pollution affects Acrobat Reader DC/Acrobat DC on Windows and macOS. Affected: Acrobat Reader DC 26.001.21367 and earlier; Acrobat DC 26.001.21367 and earlier; Acrobat 2024 24.001.30356 and earlier. Root cause: Improperly Controlled Modification of ...
CVE-2022-28269
CVE-2022-28269 affects Adobe Acrobat Reader DC and older Adobe Acrobat/Reader builds. The issue is a use-after-free in the processing of Annotation objects that can cause a memory leak in the context of the current user. Exploitation requires user interaction (victim opens a crafted file). Affect...
CVE-2022-28838
CVE-2022-28838 affects Adobe Acrobat Pro DC (versions 22.001.2011x and earlier; 20.005.3033x and earlier; 17.012.3022x and earlier). It is a use-after-free vulnerability in a component used during PDF processing that could allow arbitrary code execution in the current user context. Exploitation r...
CVE-2022-28266
CVE-2022-28266 affects Acrobat Reader DC and related Adobe products. The issue is an out-of-bounds read when parsing crafted PDF/files, potentially allowing read past end of an allocated memory structure and bypassing mitigations such as ASLR. Exploitation requires user interaction (the victim mu...
CVE-2019-8195
CVE-2019-8195 affects Adobe Acrobat/Reader and is due to an untrusted pointer dereference in multiple versions (2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier). Exploitation could lead to arbitrary code execution, with network-remote vectors and no user interac...
CVE-2023-44336
CVE-2023-44336 affects multiple Adobe Acrobat/Reader DC products (Desktop variants: Classic, DC Continuous/Continuous, and Reader DC) on Windows and macOS. The issue is a Use-After-Free vulnerability in Acrobat components that can lead to arbitrary code execution in the context of the current use...
CVE-2022-34221
CVE-2022-34221 affects Adobe Acrobat Reader: versions 22.001.20142 and earlier, 20.005.30334 and earlier, and 17.012.30229 and earlier are affected by an Access of Resource Using Incompatible Type (Type Confusion) vulnerability that could enable arbitrary code execution in the context of the curr...
CVE-2019-8197
CVE-2019-8197 is a heap overflow in Adobe Acrobat/Reader affecting versions up to 2019.012.20040, 2017.011.30148, and 2015.006.30503 (and earlier). Exploitation could lead to arbitrary code execution; CVSS v3.1 score 9.8 (CRITICAL). Adobe issued APSB19-49 patch advisory. A CIRCL sighting notes a ...
CVE-2024-49530
CVE-2024-49530 affects multiple Adobe Acrobat Reader variants (including 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier). The exploit is a Use-After-Free vulnerability in which arbitrary code execution could occur in the context of the current user. Exploitation ...
CVE-2016-4270
Technical details about CVE-2016-4270 are not publicly provided in the supplied documents; monitor for official advisories for affected products, vulnerable components, impact, and fixes.
CVE-2022-27793
CVE-2022-27793 describes a font-parsing out-of-bounds write in Adobe Acrobat/Reader DC. Affected: Acrobat Reader DC 22.001.20085 and earlier; 20.005.3031x and earlier; 17.012.30205 and earlier. Impact: arbitrary code execution in the context of the current user; exploitation requires user interac...
CVE-2022-34230
CVE-2022-34230 concerns Adobe Acrobat Reader/Acrobat vulnerabilities in the Use-After-Free class that can lead to arbitrary code execution. Affected products include Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier), and 17.012.30229 (and earlier); related entries doc...
CVE-2022-24104
CVE-2022-24104 is a use-after-free vulnerability in Adobe Acrobat Reader DC affecting versions 20.001.20085 and earlier, 20.005.3031x and earlier, and 17.012.30205 and earlier. The flaw could allow arbitrary code execution in the context of the current user and exploitation requires user interact...
CVE-2019-8106
CVE-2019-8106 affects Adobe Acrobat and Reader: out-of-bounds read that could lead to information disclosure. Vulnerable versions include 2019.012.20035 and earlier, 2017.011.30142/30143 and earlier, 2015.006.30497/30498 and earlier. Root cause is an out-of-bounds memory read vulnerability in the...
CVE-2022-24103
CVE-2022-24103 is a use-after-free vulnerability in Acrobat Reader DC affecting versions 20.001.20085 and earlier, 20.005.3031x and earlier, and 17.012.30205 and earlier. The issue can lead to arbitrary code execution in the user’s context and requires user interaction (victim opens a malicious f...
CVE-2022-27788
The CVE-2022-27788 entry describes an out-of-bounds write in Adobe Acrobat Reader DC affecting versions 22.001.20085 and earlier, 20.005.3031x and earlier, and 17.012.30205 and earlier, enabling arbitrary code execution in the context of the current user. Exploitation requires user interaction; a...
CVE-2024-49531
CVE-2024-49531 affects Adobe Acrobat Reader: specific vulnerable versions include 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier. Root cause is a NULL Pointer Dereference that can crash the app, causing a denial-of-service. Exploitation requires user interaction ...
CVE-2019-8173
Adobe Acrobat and Reader are affected by an out-of-bounds read vulnerability (CVE-2019-8173) in versions 2019.012.20040 and earlier, 2017.011.30148 and earlier, and 2015.006.30503 and earlier. The issue could allow information disclosure upon successful exploitation. The connected advisories (APS...
CVE-2022-28837
CVE-2022-28837 affects Adobe Acrobat Pro DC: use-after-free in Doc buttonSetIcon handling leading to possible memory disclosure and ASLR bypass. Affected: Acrobat Pro DC 22.001.2011x and earlier, 20.005.3033x and earlier, 17.012.3022x and earlier. Exploitation requires user interaction (open a ma...
CVE-2024-49535
CVE-2024-49535 : Acrobat Reader versions including 24.005.20307, 24.001.30213, 24.001.30193, 20.005.30730, 20.005.30710 and earlier are affected by an XML External Entity (XXE) vulnerability due to an improper restriction. The issue could allow an attacker to provide malicious XML input containin...
CVE-2019-8204
CVE-2019-8204 is an out-of-bounds read vulnerability affecting Adobe Acrobat and Reader. Publicly listed affected versions include 2019.012.20040 and earlier, 2017.011.30148 and earlier, and 2015.006.30503 and earlier. Successful exploitation could lead to information disclosure. The issue is cau...
CVE-2019-8163
CVE-2019-8163 affects Adobe Acrobat and Reader, with affected builds including 2019.012.20040 and earlier, 2017.011.30148 and earlier, and 2015.006.30503 and earlier. The issue is an out-of-bounds read in multiple components, and successful exploitation could lead to information disclosure. Mitig...
CVE-2019-8166
CVE-2019-8166 affects Adobe Acrobat and Reader on multiple old builds (e.g., 2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier). The issue is a buffer overrun vulnerability that could allow arbitrary code execution on successful exploitation. The public advisories...
CVE-2019-8182
CVE-2019-8182 affects Adobe Acrobat/Reader: out-of-bounds read leading to information disclosure in versions up to 2019.012.20040, 2017.011.30148, and 2015.006.30503 (and earlier). Connected sources confirm the vulnerability type and affected versions; no specific patch/version remediation detail...
CVE-2019-8225
CVE-2019-8225 is a use-after-free vulnerability in Adobe Acrobat and Reader across several legacy builds (e.g., 2019.012.20040 and earlier, 2017.x, 2015.x). The issue can allow arbitrary code execution on successful exploitation. Public documentation ties this CVE to Adobe APSB19-49, which detail...
CVE-2019-8196
CVE-2019-8196 affects Adobe Acrobat and Reader. The issue is an untrusted pointer dereference in multiple builds (e.g., 2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier) that could allow arbitrary code execution on successful exploitation. Public references indic...
CVE-2019-8200
CVE-2019-8200 corresponds to a type-confusion vulnerability in Adobe Acrobat and Reader affecting multiple old builds (2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier). The flaw could allow arbitrary code execution on exploitation. Root cause is type confusion w...
CVE-2019-8184
CVE-2019-8184 is an out-of-bounds read vulnerability in Adobe Acrobat and Reader affecting versions 2019.012.20040 and earlier, 2017.011.30148 and earlier, and 2015.006.30503 and earlier. Exploitation could lead to information disclosure. Remediation is to apply the APSB19-49 fixes; update to a f...
CVE-2022-24092
CVE-2022-24092 affects Adobe Acrobat Reader DC versions 21.007.20099 and earlier, 20.004.30017 and earlier, and 17.011.30204 and earlier. It is a font-parsing out-of-bounds write vulnerability that could lead to arbitrary code execution in the user’s context. exploitation requires user interactio...
CVE-2019-8077
Adobe Acrobat and Reader are affected by CVE-2019-8077, an out-of-bounds read that could lead to information disclosure. Affected products include versions 2019.012.20035 and earlier, 2017.011.30142 and earlier, 2017.011.30143 and earlier, 2015.006.30497 and earlier, and 2015.006.30498 and earlie...
CVE-2019-8192
CVE-2019-8192 is an asserted use-after-free in Adobe Acrobat/Reader affecting multiple historic versions (up to 2019.012.20040, 2017.011.30148, and 2015.x) that could lead to arbitrary code execution. Connected documents corroborate a memory-management vulnerability with remote-exploitation poten...
CVE-2019-8101
CVE-2019-8101 is an integer overflow vulnerability in Adobe Acrobat and Reader affecting versions such as 2019.012.20035 and earlier, 2017.011.30142/43 and earlier, and 2015.006.30497/30498 and earlier. The overflow could enable an information disclosure when exploited. Multiple vendors and scann...
CVE-2019-8169
CVE-2019-8169 affects Adobe Acrobat/Reader: Type confusion in various builds (2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier) that could allow arbitrary code execution. Exploitation is network-based with no user interaction per the CVSS data. The issue is addre...
CVE-2019-8177
CVE-2019-8177 is a use-after-free vulnerability in Adobe Acrobat and Reader affecting multiple older builds (e.g., 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and earlier). Successful exploitation could lead to arbitrary code execution. The issue is discussed in the APS...
CVE-2019-8060
CVE-2019-8060 is a command injection vulnerability in Adobe Acrobat/Reader. Affected versions include 2019.012.20035 and earlier, 2017.011.30142/30143 and earlier, and 2015.006.30497/30498 and earlier, with successful exploitation enabling arbitrary code execution. Several connected advisories (e...
CVE-2019-8187
CVE-2019-8187 is an Adobe Acrobat/Reader use-after-free vulnerability. The flaw affects multiple product versions listed in the description (e.g., 2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier) and could allow arbitrary code execution on successful exploitatio...
CVE-2019-8199
CVE-2019-8199 affects Adobe Acrobat and Reader (versions 2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier). The vulnerability is an out-of-bounds write in the software, and exploitation could lead to arbitrary code execution. Public references in the provided doc...
CVE-2019-8057
CVE-2019-8057 is an Adobe Acrobat/Reader use-after-free vulnerability affecting multiple versions (e.g., 2019.012.20035 and earlier; 2017.011.30142/30143; 2015.006.30497/30498). The Red Hat and NVD entries describe successful exploitation as leading to arbitrary code execution. Connected document...
CVE-2023-44372
CVE-2023-44372 affects Adobe Acrobat Reader versions 23.006.20360 and earlier, and 20.005.30524 and earlier. It is a Use-After-Free vulnerability that could lead to arbitrary code execution in the current user context. Exploitation requires user interaction (victim must open a malicious file). Re...
CVE-2019-8094
CVE-2019-8094 is an out-of-bounds read vulnerability affecting Adobe Acrobat and Adobe Reader. Affected versions listed in the sources include 2019.012.20035 and earlier, 2017.011.30142/30143 and earlier, and 2015.006.30497/30498 and earlier. Successful exploitation could lead to information disc...
CVE-2019-8198
CVE-2019-8198 affects Adobe Acrobat and Adobe Reader on multiple older builds (e.g., 2019.012.20040 and earlier; 2017.011.30148 and earlier; 2015.006.30503 and earlier). The vulnerability is an out-of-bounds read that could allow information disclosure. Public references point to APSB19-49 for re...
CVE-2019-8161
CVE-2019-8161 describes a type confusion vulnerability affecting Adobe Acrobat and Reader. Affected software versions include 2019.012.20040 and earlier, 2017.011.30148 and earlier, and 2015.006.30503 and earlier. Successful exploitation could lead to arbitrary code execution. The issue is docume...