Acrobat Security Vulnerabilities and Issues — Page 26 of Acrobat CVE List

Lucene search

AdobeAcrobat

1346 matches found

CVE•added 2016/10/13 8:0 p.m.•47 views

CVE-2016-7014

Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors...

10CVSS10AI score0.05955EPSS

CVE•added 2016/10/13 8:0 p.m.•47 views

CVE-2016-7015

10CVSS10AI score0.05955EPSS

CVE•added 2018/02/27 5:29 a.m.•47 views

CVE-2018-4896

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of t...

6.5CVSS7.5AI score0.01979EPSS

CVE•added 2021/09/29 4:15 p.m.•47 views

CVE-2021-39842

Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by a use-after-free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interactio...

7.8CVSS7.6AI score0.56988EPSS

CVE•added 2021/09/29 4:15 p.m.•47 views

CVE-2021-39843

Acrobat Reader DC versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user inte...

7.8CVSS7.7AI score0.31328EPSS

CVE•added 2024/08/14 3:15 p.m.•47 views

CVE-2024-39422

Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open...

7.8CVSS7.8AI score0.00081EPSS

CVE•added 2024/08/14 3:15 p.m.•47 views

CVE-2024-39423

Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim mus...

7.8CVSS7.8AI score0.0007EPSS

CVE•added 2024/08/14 3:15 p.m.•47 views

CVE-2024-41831

7.8CVSS7.8AI score0.00081EPSS

CVE•added 2024/08/14 3:15 p.m.•47 views

CVE-2024-41833

Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this is...

5.5CVSS5.1AI score0.00126EPSS

CVE•added 2004/07/27 4:0 a.m.•46 views

CVE-2004-0632

Adobe Reader 6.0 does not properly handle null characters when splitting a filename path into components, which allows remote attackers to execute arbitrary code via a file with a long extension that is not normally handled by Reader, triggering a buffer overflow.

7.5CVSS7.8AI score0.23152EPSS

CVE•added 2008/12/05 12:30 a.m.•46 views

CVE-2008-5331

Adobe Acrobat 9 uses more efficient encryption than previous versions, which makes it easier for attackers to guess a document's password via a brute-force attack.

7.5CVSS6.6AI score0.00781EPSS

CVE•added 2011/02/10 6:0 p.m.•46 views

CVE-2011-0565

Unspecified vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0585.

9.3CVSS7.7AI score0.07503EPSS

CVE•added 2014/12/10 9:59 p.m.•46 views

CVE-2014-8460

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8457 and CVE-2014-9159.

10CVSS7.9AI score0.36278EPSS

CVE•added 2014/12/10 9:59 p.m.•46 views

CVE-2014-8461

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE...

10CVSS7.6AI score0.27545EPSS

CVE•added 2016/05/11 10:59 a.m.•46 views

CVE-2016-1085

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors...

10CVSS10AI score0.12588EPSS

CVE•added 2016/05/11 11:0 a.m.•46 views

CVE-2016-1092

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information from process memory via unspecified vectors, a different vulnerabi...

7.5CVSS7.2AI score0.02038EPSS

CVE•added 2016/05/11 11:0 a.m.•46 views

CVE-2016-1120

10CVSS10AI score0.12588EPSS

CVE•added 2016/05/11 11:0 a.m.•46 views

CVE-2016-4089

10CVSS10AI score0.12588EPSS

CVE•added 2016/05/11 11:0 a.m.•46 views

CVE-2016-4100

10CVSS10AI score0.12588EPSS

CVE•added 2016/07/13 2:0 a.m.•46 views

CVE-2016-4209

Heap-based buffer overflow in Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.8AI score0.0459EPSS

CVE•added 2016/10/13 7:59 p.m.•46 views

CVE-2016-6952

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vu...

10CVSS9.8AI score0.0216EPSS

CVE•added 2016/10/13 7:59 p.m.•46 views

CVE-2016-6958

Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to bypass intended access restrictions via unspecified vectors.

10CVSS9.2AI score0.01262EPSS

CVE•added 2016/10/13 7:59 p.m.•46 views

CVE-2016-6959

10CVSS10AI score0.05955EPSS

CVE•added 2016/10/13 7:59 p.m.•46 views

CVE-2016-6960

10CVSS10AI score0.05955EPSS

CVE•added 2016/10/13 7:59 p.m.•46 views

CVE-2016-6977

10CVSS10AI score0.05955EPSS

CVE•added 2016/10/13 7:59 p.m.•46 views

CVE-2016-6979

10CVSS9.8AI score0.0216EPSS

CVE•added 2016/10/13 8:1 p.m.•46 views

CVE-2016-7018

10CVSS10AI score0.05955EPSS

CVE•added 2018/02/27 5:29 a.m.•46 views

CVE-2018-4889

6.5CVSS7.5AI score0.01979EPSS

CVE•added 2018/07/09 7:29 p.m.•46 views

CVE-2018-4997

Adobe Acrobat and Reader versions 2018.009.20050 and earlier, 2017.011.30070 and earlier, and 2015.006.30394 and earlier have an Out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

8.8CVSS9.3AI score0.0519EPSS

CVE•added 2023/09/06 2:15 p.m.•46 views

CVE-2021-35980

Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Path traversal vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user...

7.8CVSS8.2AI score0.00833EPSS

CVE•added 2023/08/10 2:15 p.m.•46 views

CVE-2023-38223

Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Access of Uninitialized Pointer that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must ope...

7.8CVSS7.6AI score0.04565EPSS

CVE•added 2011/06/16 11:55 p.m.•45 views

CVE-2011-2106

Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

9.3CVSS7.8AI score0.11888EPSS

CVE•added 2012/08/15 10:31 a.m.•45 views

CVE-2012-4161

Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4162.

7.5CVSS7.8AI score0.05018EPSS

CVE•added 2014/12/10 9:59 p.m.•45 views

CVE-2014-8457

10CVSS7.9AI score0.36278EPSS

CVE•added 2016/05/11 11:0 a.m.•45 views

CVE-2016-1095

10CVSS10AI score0.12588EPSS

CVE•added 2016/11/10 4:59 p.m.•45 views

CVE-2016-4095

10CVSS9.6AI score0.0428EPSS

CVE•added 2016/05/11 11:0 a.m.•45 views

CVE-2016-4106

Untrusted search path vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows local users to gain privileges via a Trojan horse resource in an uns...

7.8CVSS8AI score0.00484EPSS

CVE•added 2016/10/13 7:59 p.m.•45 views

CVE-2016-6961

10CVSS9.8AI score0.0216EPSS

CVE•added 2016/10/13 7:59 p.m.•45 views

CVE-2016-6973

10CVSS10AI score0.05955EPSS

CVE•added 2016/10/13 8:0 p.m.•45 views

CVE-2016-7006

10CVSS10AI score0.05955EPSS

CVE•added 2018/02/27 5:29 a.m.•45 views

CVE-2018-4884

6.5CVSS7.5AI score0.01991EPSS

CVE•added 2018/02/27 5:29 a.m.•45 views

CVE-2018-4898

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the XPS engi...

8.8CVSS9.2AI score0.04408EPSS

CVE•added 2018/02/27 5:29 a.m.•45 views

CVE-2018-4915

8.8CVSS9.2AI score0.04408EPSS

CVE•added 2024/06/13 8:15 a.m.•45 views

CVE-2024-26036

Adobe Experience Manager versions 6.5.20 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

5.4CVSS5.3AI score0.00493EPSS

CVE•added 2024/08/14 3:15 p.m.•45 views

CVE-2024-39426

Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to ex...

7.8CVSS7.5AI score0.0007EPSS

CVE•added 2008/05/08 12:20 a.m.•44 views

CVE-2008-2042

The Javascript API in Adobe Acrobat Professional 7.0.9 and possibly 8.1.1 exposes a dangerous method, which allows remote attackers to execute arbitrary commands or trigger a buffer overflow via a crafted PDF file that invokes app.checkForUpdate with a malicious callback function.

9.3CVSS7.8AI score0.04475EPSS

CVE•added 2011/02/10 6:0 p.m.•44 views

CVE-2011-0605

Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

6.8CVSS7.7AI score0.0457EPSS

CVE•added 2016/05/11 11:0 a.m.•44 views

CVE-2016-4097

10CVSS10AI score0.12588EPSS

CVE•added 2016/10/13 7:59 p.m.•44 views

CVE-2016-6968

10CVSS9.8AI score0.0216EPSS

CVE•added 2016/10/13 7:59 p.m.•44 views

CVE-2016-6976

10CVSS10AI score0.05955EPSS

Total number of security vulnerabilities1346