Lucene search

K
AdobeAcrobat Reader

1072 matches found

CVE
CVE
added 2009/10/19 10:30 p.m.52 views

CVE-2009-2982

An unspecified certificate in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow remote attackers to conduct a "social engineering attack" via unknown vectors.

9.3CVSS6.3AI score0.01021EPSS
CVE
CVE
added 2009/10/19 10:30 p.m.52 views

CVE-2009-2992

An unspecified ActiveX control in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 does not properly validate input, which allows attackers to cause a denial of service via unknown vectors.

4.3CVSS6.2AI score0.02148EPSS
CVE
CVE
added 2010/04/14 4:0 p.m.52 views

CVE-2010-0203

Buffer overflow in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-0198, CVE-2010-0199, and CVE-2010-0202.

9.3CVSS7.6AI score0.26977EPSS
CVE
CVE
added 2011/02/10 6:0 p.m.52 views

CVE-2011-0565

Unspecified vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0585.

9.3CVSS7.7AI score0.06784EPSS
CVE
CVE
added 2011/02/10 6:0 p.m.52 views

CVE-2011-0570

Untrusted search path vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2011-0562 and CVE-2011-0588.

6.9CVSS6.2AI score0.00154EPSS
CVE
CVE
added 2014/12/10 9:59 p.m.52 views

CVE-2014-8454

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8455 and CVE-2014-9165.

10CVSS7.4AI score0.2145EPSS
CVE
CVE
added 2014/12/10 9:59 p.m.52 views

CVE-2014-8459

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE...

10CVSS7.6AI score0.27545EPSS
CVE
CVE
added 2014/12/10 9:59 p.m.52 views

CVE-2014-9165

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8454 and CVE-2014-8455.

10CVSS7.4AI score0.2145EPSS
CVE
CVE
added 2015/07/15 2:59 p.m.52 views

CVE-2015-5105

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allows attackers to execute arbitrary code via unsp...

10CVSS7.9AI score0.04398EPSS
CVE
CVE
added 2015/10/14 11:59 p.m.52 views

CVE-2015-6708

The ANStartApproval method in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to bypass JavaScript API execution...

6.8CVSS6.5AI score0.0783EPSS
CVE
CVE
added 2015/10/14 11:59 p.m.52 views

CVE-2015-6716

The ANSendForFormDistribution method in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to bypass JavaScript API...

6.8CVSS6.5AI score0.0783EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.52 views

CVE-2018-4872

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is a security bypass vulnerability that leads to a sandbox escape. Specifically, the vulnerability exists in the way a cr...

10CVSS9.2AI score0.05191EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.52 views

CVE-2018-4880

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of t...

6.5CVSS7.5AI score0.0188EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.52 views

CVE-2018-4890

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability in the image conversion engine, when handling JPEG data embedded within a...

8.8CVSS9AI score0.01558EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.52 views

CVE-2018-4892

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the JBIG2 decoder. The vulnerability is triggered by a crafted PDF fi...

8.8CVSS9.2AI score0.02538EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.52 views

CVE-2018-4893

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of X...

6.5CVSS7.5AI score0.0188EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.52 views

CVE-2018-4908

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of t...

6.5CVSS7.5AI score0.0188EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.52 views

CVE-2018-4910

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability in the JavaScript engine. The vulnerability is triggered by a PDF file wi...

8.8CVSS9.1AI score0.01485EPSS
CVE
CVE
added 2023/08/10 2:15 p.m.52 views

CVE-2023-38226

Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a v...

7.8CVSS7.6AI score0.05187EPSS
CVE
CVE
added 2004/09/01 4:0 a.m.51 views

CVE-2004-0194

Stack-based buffer overflow in the OutputDebugString function for Adobe Acrobat Reader 5.1 allows remote attackers to execute arbitrary code via a PDF document with XML Forms Data Format (XFDF) data.

7.5CVSS7.9AI score0.18002EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.51 views

CVE-2005-0492

Adobe Acrobat Reader 6.0.3 and 7.0.0 allows remote attackers to cause a denial of service (application crash) via a PDF file that contains a negative Count value in the root page node.

2.6CVSS6.6AI score0.01789EPSS
CVE
CVE
added 2008/03/06 12:44 a.m.51 views

CVE-2008-0883

acroread in Adobe Acrobat Reader 8.1.2 allows local users to overwrite arbitrary files via a symlink attack on temporary files related to SSL certificate handling.

3.7CVSS6AI score0.00089EPSS
CVE
CVE
added 2010/04/14 4:0 p.m.51 views

CVE-2010-0192

Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2010-0193 and CVE-2010-0196.

9.3CVSS9.6AI score0.41095EPSS
CVE
CVE
added 2010/04/14 4:0 p.m.51 views

CVE-2010-0193

Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2010-0192 and CVE-2010-0196.

9.3CVSS9.6AI score0.41095EPSS
CVE
CVE
added 2010/04/14 4:0 p.m.51 views

CVE-2010-0198

Buffer overflow in Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2010-0199, CVE-2010-0202, and CVE-2010-0203.

9.3CVSS7.6AI score0.26977EPSS
CVE
CVE
added 2011/06/16 11:55 p.m.51 views

CVE-2011-2102

Unspecified vulnerability in Adobe Reader and Acrobat before 10.1 on Windows and Mac OS X allows attackers to bypass intended access restrictions via unknown vectors.

9.3CVSS6.4AI score0.08774EPSS
CVE
CVE
added 2013/05/16 11:45 a.m.51 views

CVE-2013-3342

Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 do not properly handle operating-system domain blacklists, which has unspecified impact and attack vectors.

10CVSS6.3AI score0.02693EPSS
CVE
CVE
added 2015/10/14 11:59 p.m.51 views

CVE-2015-6691

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to execute arbitrary code via un...

10CVSS7.3AI score0.05379EPSS
CVE
CVE
added 2015/11/04 3:59 a.m.51 views

CVE-2015-7650

Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (out-of-bo...

6.8CVSS7.4AI score0.19689EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.51 views

CVE-2018-4888

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability. The vulnerability is triggered by a crafted PDF file that can cause a m...

8.8CVSS9.2AI score0.02538EPSS
CVE
CVE
added 2018/02/27 5:29 a.m.51 views

CVE-2018-4894

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of t...

6.5CVSS7.5AI score0.0188EPSS
CVE
CVE
added 2020/11/05 8:15 p.m.51 views

CVE-2020-24439

Acrobat Reader DC for macOS versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a security feature bypass. While the practical security impact is minimal, a defense-in-depth fix has been implemented to further harden the Adobe Reader ...

2.8CVSS4.2AI score0.00043EPSS
CVE
CVE
added 2021/09/29 4:15 p.m.51 views

CVE-2021-39843

Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user inte...

7.8CVSS7.7AI score0.31328EPSS
CVE
CVE
added 2023/08/10 2:15 p.m.51 views

CVE-2023-38238

Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by a Use-After-Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requ...

5.5CVSS5.2AI score0.0009EPSS
CVE
CVE
added 2024/06/13 12:15 p.m.51 views

CVE-2024-34130

Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could exploit this vulnerability to access confidential information. Exploitation of this issue does not require user in...

5.5CVSS5.3AI score0.00041EPSS
CVE
CVE
added 2009/10/19 10:30 p.m.50 views

CVE-2009-2987

Unspecified vulnerability in an ActiveX control in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 on Windows allows remote attackers to cause a denial of service via unknown vectors.

4.3CVSS6.4AI score0.01376EPSS
CVE
CVE
added 2014/09/17 10:55 a.m.50 views

CVE-2014-0561

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567.

10CVSS7.9AI score0.41354EPSS
CVE
CVE
added 2014/09/17 10:55 a.m.50 views

CVE-2014-0562

Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."

4.3CVSS5.2AI score0.00649EPSS
CVE
CVE
added 2015/10/14 11:59 p.m.50 views

CVE-2015-6686

Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory co...

6.8CVSS7.5AI score0.19689EPSS
CVE
CVE
added 2015/10/14 11:59 p.m.50 views

CVE-2015-6687

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.16 and 11.x before 11.0.13, Acrobat and Acrobat Reader DC Classic before 2015.006.30094, and Acrobat and Acrobat Reader DC Continuous before 2015.009.20069 on Windows and OS X allows attackers to execute arbitrary code via un...

10CVSS7.3AI score0.05379EPSS
CVE
CVE
added 2021/09/29 4:15 p.m.50 views

CVE-2021-39842

Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interactio...

7.8CVSS7.6AI score0.56988EPSS
CVE
CVE
added 2005/05/02 4:0 a.m.49 views

CVE-2005-0035

The Acrobat web control in Adobe Acrobat and Acrobat Reader 7.0 and earlier, when used with Internet Explorer, allows remote attackers to determine the existence of arbitrary files via the LoadFile ActiveX method.

5.1CVSS6.8AI score0.03801EPSS
CVE
CVE
added 2005/06/15 4:0 a.m.49 views

CVE-2005-1306

The Adobe Reader control in Adobe Reader and Acrobat 7.0 and 7.0.1 allows remote attackers to determine the existence of files via Javascript containing XML script, aka the "XML External Entity vulnerability."

7.5CVSS7.5AI score0.16058EPSS
CVE
CVE
added 2006/04/13 6:2 p.m.49 views

CVE-2006-1627

Adobe Document Server for Reader Extensions 6.0 does not provide proper access control, which allows remote authenticated users to perform privileged actions by modifying the (1) actionID and (2) pageID parameters. NOTE: due to an error during reservation, this identifier was inadvertently associat...

7.5CVSS6.3AI score0.03701EPSS
CVE
CVE
added 2006/06/19 9:2 p.m.49 views

CVE-2006-3093

Multiple unspecified vulnerabilities in Adobe Acrobat Reader (acroread) before 7.0.8 have unknown impact and unknown vectors.

6.8CVSS6.6AI score0.03007EPSS
CVE
CVE
added 2007/01/03 9:28 p.m.49 views

CVE-2007-0047

CRLF injection vulnerability in Adobe Acrobat Reader Plugin before 8.0.0, when used with the Microsoft.XMLHTTP ActiveX object in Internet Explorer, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via CRLF sequences in the javascript: URI in the (...

6.8CVSS6.6AI score0.04423EPSS
CVE
CVE
added 2014/09/17 10:55 a.m.49 views

CVE-2014-0560

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS7.5AI score0.15201EPSS
CVE
CVE
added 2014/12/10 9:59 p.m.49 views

CVE-2014-8455

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8454 and CVE-2014-9165.

10CVSS7.4AI score0.2145EPSS
CVE
CVE
added 2014/12/10 9:59 p.m.49 views

CVE-2014-8458

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE...

10CVSS7.6AI score0.27545EPSS
CVE
CVE
added 2015/07/15 2:59 p.m.49 views

CVE-2015-5096

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allows attackers to execute arbitrary code via unsp...

10CVSS7.9AI score0.04398EPSS
Total number of security vulnerabilities1072