Acrobat@11.0.2 Security Vulnerabilities and Issues — Page 3 of Acrobat@11.0.2 CVE List

Lucene search

AdobeAcrobat11.0.2

119 matches found

CVE•added 2014/11/30 2:59 a.m.•53 views

CVE-2014-9150

Race condition in the MoveFileEx call hook feature in Adobe Reader and Acrobat 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently write to files in arbitrary locations, via an NTFS junction attack, a similar issue to CVE-2014-0568.

6.4CVSS6.7AI score0.06357EPSS

CVE•added 2014/12/10 9:59 p.m.•52 views

CVE-2014-8453

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

5CVSS6.6AI score0.10853EPSS

CVE•added 2015/05/13 10:59 a.m.•52 views

CVE-2015-3060

Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on JavaScript API execution via unspecified vectors, a different vulnerability than CVE-2015-3061, CVE-2015-3062, CVE-2015-3063, CVE-2015-3064, CVE-2015-3065, CVE...

10CVSS6.4AI score0.31105EPSS

CVE•added 2013/05/16 11:45 a.m.•51 views

CVE-2013-2737

A JavaScript API in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to obtain sensitive information via unspecified vectors.

5CVSS5.7AI score0.01908EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8447

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8456, CVE-2014-8458, CVE...

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8449

Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.6AI score0.39126EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8454

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8455 and CVE-2014-9165.

10CVSS7.4AI score0.2145EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8459

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-9165

10CVSS7.4AI score0.2145EPSS

CVE•added 2013/05/16 11:45 a.m.•50 views

CVE-2013-3342

Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 do not properly handle operating-system domain blacklists, which has unspecified impact and attack vectors.

10CVSS6.3AI score0.02693EPSS

CVE•added 2014/09/17 10:55 a.m.•48 views

CVE-2014-0560

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS7.5AI score0.15201EPSS

CVE•added 2014/09/17 10:55 a.m.•48 views

CVE-2014-0561

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567.

10CVSS7.9AI score0.41354EPSS

CVE•added 2014/09/17 10:55 a.m.•48 views

CVE-2014-0562

Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."

4.3CVSS5.2AI score0.00649EPSS

CVE•added 2014/12/10 9:59 p.m.•48 views

CVE-2014-8458

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•47 views

CVE-2014-8455

10CVSS7.4AI score0.2145EPSS

CVE•added 2014/12/10 9:59 p.m.•46 views

CVE-2014-8460

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8457 and CVE-2014-9159.

10CVSS7.9AI score0.36278EPSS

CVE•added 2014/12/10 9:59 p.m.•46 views

CVE-2014-8461

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•45 views

CVE-2014-8457

10CVSS7.9AI score0.36278EPSS

CVE•added 2014/09/17 10:55 a.m.•43 views

CVE-2014-0563

Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to cause a denial of service (memory corruption) via unspecified vectors.

7.8CVSS6.4AI score0.01352EPSS

Total number of security vulnerabilities119