Acrobat Security Vulnerabilities and Issues — Page 26 of Acrobat CVE List

Lucene search

AdobeAcrobat

1349 matches found

CVE•added 2003/06/16 4:0 a.m.•48 views

CVE-2003-0284

Adobe Acrobat 5 does not properly validate JavaScript in PDF files, which allows remote attackers to write arbitrary files into the Plug-ins folder that spread to other PDF documents, as demonstrated by the W32.Yourde virus.

7.5CVSS6.7AI score0.01224EPSS

CVE•added 2008/09/15 3:14 p.m.•48 views

CVE-2008-4071

A certain ActiveX control in Adobe Acrobat 9, when used with Microsoft Windows Vista and Internet Explorer 7, allows remote attackers to cause a denial of service (browser crash) via an src property value with an invalid acroie:// URL.

5CVSS6.5AI score0.03297EPSS

CVE•added 2012/08/15 10:31 a.m.•48 views

CVE-2012-4161

Adobe Reader and Acrobat 9.x before 9.5.2 and 10.x before 10.1.4 on Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-4162.

7.5CVSS7.8AI score0.05018EPSS

CVE•added 2016/05/11 10:59 a.m.•48 views

CVE-2016-1085

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors...

10CVSS10AI score0.28442EPSS

CVE•added 2016/05/11 11:1 a.m.•48 views

CVE-2016-4107

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vu...

10CVSS8.3AI score0.13206EPSS

CVE•added 2016/07/13 2:0 a.m.•48 views

CVE-2016-4210

Integer overflow in Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.7AI score0.09955EPSS

CVE•added 2016/10/13 7:59 p.m.•48 views

CVE-2016-6945

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vu...

10CVSS9.8AI score0.0861EPSS

CVE•added 2016/10/13 7:59 p.m.•48 views

CVE-2016-6950

Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors...

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 7:59 p.m.•48 views

CVE-2016-6960

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 7:59 p.m.•48 views

CVE-2016-6964

10CVSS9.8AI score0.0861EPSS

CVE•added 2016/10/13 7:59 p.m.•48 views

CVE-2016-6975

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 8:0 p.m.•48 views

CVE-2016-7014

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 8:0 p.m.•48 views

CVE-2016-7015

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 8:1 p.m.•48 views

CVE-2016-7018

10CVSS10AI score0.0704EPSS

CVE•added 2018/02/27 5:29 a.m.•48 views

CVE-2018-4884

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of t...

6.5CVSS7.5AI score0.01891EPSS

CVE•added 2018/07/09 7:29 p.m.•48 views

CVE-2018-4997

Adobe Acrobat and Reader versions 2018.009.20050 and earlier, 2017.011.30070 and earlier, and 2015.006.30394 and earlier have an Out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

8.8CVSS9.3AI score0.0519EPSS

CVE•added 2024/08/14 3:15 p.m.•48 views

CVE-2024-39423

Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim mus...

7.8CVSS7.8AI score0.0134EPSS

CVE•added 2024/08/14 3:15 p.m.•48 views

CVE-2024-41831

Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open...

7.8CVSS7.8AI score0.01494EPSS

CVE•added 2024/08/14 3:15 p.m.•48 views

CVE-2024-41833

Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this is...

5.5CVSS5.1AI score0.00072EPSS

CVE•added 2004/07/27 4:0 a.m.•47 views

CVE-2004-0632

Adobe Reader 6.0 does not properly handle null characters when splitting a filename path into components, which allows remote attackers to execute arbitrary code via a file with a long extension that is not normally handled by Reader, triggering a buffer overflow.

7.5CVSS7.8AI score0.23152EPSS

CVE•added 2008/12/05 12:30 a.m.•47 views

CVE-2008-5331

Adobe Acrobat 9 uses more efficient encryption than previous versions, which makes it easier for attackers to guess a document's password via a brute-force attack.

7.5CVSS6.6AI score0.00781EPSS

CVE•added 2014/12/10 9:59 p.m.•47 views

CVE-2014-8460

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8457 and CVE-2014-9159.

10CVSS7.9AI score0.36278EPSS

CVE•added 2014/12/10 9:59 p.m.•47 views

CVE-2014-8461

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE...

10CVSS7.6AI score0.27545EPSS

CVE•added 2016/05/11 11:0 a.m.•47 views

CVE-2016-1092

Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allow attackers to obtain sensitive information from process memory via unspecified vectors, a different vulnerabi...

7.5CVSS7.2AI score0.03806EPSS

CVE•added 2016/05/11 11:0 a.m.•47 views

CVE-2016-1120

10CVSS10AI score0.28442EPSS

CVE•added 2016/05/11 11:0 a.m.•47 views

CVE-2016-4089

10CVSS10AI score0.28442EPSS

CVE•added 2016/05/11 11:0 a.m.•47 views

CVE-2016-4100

10CVSS10AI score0.28442EPSS

CVE•added 2016/07/13 2:0 a.m.•47 views

CVE-2016-4209

Heap-based buffer overflow in Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.8AI score0.10681EPSS

CVE•added 2016/10/13 7:59 p.m.•47 views

CVE-2016-6952

10CVSS9.8AI score0.0861EPSS

CVE•added 2016/10/13 7:59 p.m.•47 views

CVE-2016-6958

Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to bypass intended access restrictions via unspecified vectors.

10CVSS9.2AI score0.01262EPSS

CVE•added 2016/10/13 7:59 p.m.•47 views

CVE-2016-6959

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 7:59 p.m.•47 views

CVE-2016-6961

10CVSS9.8AI score0.0861EPSS

CVE•added 2016/10/13 7:59 p.m.•47 views

CVE-2016-6977

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 7:59 p.m.•47 views

CVE-2016-6979

10CVSS9.8AI score0.0861EPSS

CVE•added 2018/02/27 5:29 a.m.•47 views

CVE-2018-4898

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the XPS engi...

8.8CVSS9.2AI score0.04194EPSS

CVE•added 2018/02/27 5:29 a.m.•47 views

CVE-2018-4904

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability. The vulnerability is triggered by crafted TIFF data within an XPS file, ...

8.8CVSS9.3AI score0.05245EPSS

CVE•added 2018/02/27 5:29 a.m.•47 views

CVE-2018-4906

6.5CVSS7.5AI score0.01221EPSS

CVE•added 2018/02/27 5:29 a.m.•47 views

CVE-2018-4915

8.8CVSS9.2AI score0.04194EPSS

CVE•added 2023/08/10 2:15 p.m.•47 views

CVE-2023-38223

Adobe Acrobat Reader versions 23.003.20244 (and earlier) and 20.005.30467 (and earlier) are affected by an Access of Uninitialized Pointer that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must ope...

7.8CVSS7.6AI score0.05187EPSS

CVE•added 2011/06/16 11:55 p.m.•46 views

CVE-2011-2106

Adobe Reader and Acrobat 8.x before 8.3, 9.x before 9.4.5, and 10.x before 10.1 on Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.

9.3CVSS7.8AI score0.11888EPSS

CVE•added 2014/12/10 9:59 p.m.•46 views

CVE-2014-8457

10CVSS7.9AI score0.36278EPSS

CVE•added 2016/05/11 11:0 a.m.•46 views

CVE-2016-1095

10CVSS10AI score0.28442EPSS

CVE•added 2016/11/10 4:59 p.m.•46 views

CVE-2016-4095

10CVSS9.6AI score0.0428EPSS

CVE•added 2016/05/11 11:0 a.m.•46 views

CVE-2016-4106

Untrusted search path vulnerability in Adobe Reader and Acrobat before 11.0.16, Acrobat and Acrobat Reader DC Classic before 15.006.30172, and Acrobat and Acrobat Reader DC Continuous before 15.016.20039 on Windows and OS X allows local users to gain privileges via a Trojan horse resource in an uns...

7.8CVSS8AI score0.00269EPSS

CVE•added 2016/10/13 7:59 p.m.•46 views

CVE-2016-6973

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/13 8:0 p.m.•46 views

CVE-2016-7006

10CVSS10AI score0.0704EPSS

CVE•added 2016/10/21 5:59 p.m.•46 views

CVE-2016-7852

10CVSS10AI score0.0704EPSS

CVE•added 2018/02/27 5:29 a.m.•46 views

CVE-2018-4881