Acrobat@11.0.4 Security Vulnerabilities and Issues — Page 2 of Acrobat@11.0.4 CVE List

Lucene search

AdobeAcrobat11.0.4

87 matches found

CVE•added 2015/01/30 11:59 a.m.•59 views

CVE-2014-9161

CoolType.dll in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows, and 10.x through 10.1.13 and 11.x through 11.0.10 on OS X, allows remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a crafted PDF document.

9.3CVSS7.1AI score0.01408EPSS

CVE•added 2015/05/13 10:59 a.m.•59 views

CVE-2015-3049

Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-9161, CVE-2015-3046, CVE-2015-3050, CVE-2015-3051, CVE...

10CVSS7.6AI score0.10445EPSS

CVE•added 2015/05/13 10:59 a.m.•59 views

CVE-2015-3056

10CVSS7.6AI score0.10445EPSS

CVE•added 2015/05/13 10:59 a.m.•59 views

CVE-2015-3063

Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on JavaScript API execution via unspecified vectors, a different vulnerability than CVE-2015-3060, CVE-2015-3061, CVE-2015-3062, CVE-2015-3064, CVE-2015-3065, CVE...

10CVSS6.4AI score0.31105EPSS

CVE•added 2015/05/13 11:0 a.m.•59 views

CVE-2015-3076

10CVSS7.6AI score0.10445EPSS

CVE•added 2016/01/14 5:59 a.m.•59 views

CVE-2016-0940

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vu...

10CVSS8.9AI score0.06384EPSS

CVE•added 2014/12/10 9:59 p.m.•58 views

CVE-2014-8451

An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2014-8448.

5CVSS5.8AI score0.24239EPSS

CVE•added 2016/01/14 5:59 a.m.•58 views

CVE-2016-0932

Use-after-free vulnerability in the Doc object implementation in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via un...

8.8CVSS8.8AI score0.06384EPSS

CVE•added 2016/01/14 5:59 a.m.•58 views

CVE-2016-0942

Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors...

10CVSS9.5AI score0.05746EPSS

CVE•added 2016/01/14 5:59 a.m.•58 views

CVE-2016-0943

Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X mishandle the Global object, which allows attackers to bypass JavaScript API execution restrictions via unspecifie...

8.8CVSS9AI score0.06053EPSS

CVE•added 2014/05/14 11:13 a.m.•57 views

CVE-2014-0523

Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0522, CVE-2014-0524, and CVE-2014-0526.

10CVSS7.7AI score0.13018EPSS

CVE•added 2014/12/10 9:59 p.m.•57 views

CVE-2014-8452

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

5CVSS6.5AI score0.10317EPSS

CVE•added 2015/05/13 10:59 a.m.•57 views

CVE-2015-3059

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2015-3053, CVE-2015-3054, CVE-2015-3055, and CVE-2015-3075.

10CVSS7.4AI score0.06245EPSS

CVE•added 2014/05/14 11:13 a.m.•56 views

CVE-2014-0527

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS7.4AI score0.13117EPSS

CVE•added 2014/12/10 9:59 p.m.•56 views

CVE-2014-8456

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8458, CVE...

10CVSS7.6AI score0.27545EPSS

CVE•added 2015/05/13 10:59 a.m.•56 views

CVE-2015-3054

10CVSS7.4AI score0.06245EPSS

CVE•added 2014/12/10 9:59 p.m.•55 views

CVE-2014-9159

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8457 and CVE-2014-8460.

10CVSS7.9AI score0.36278EPSS

CVE•added 2015/05/13 10:59 a.m.•55 views

CVE-2015-3057

10CVSS7.6AI score0.10445EPSS

CVE•added 2016/01/14 5:59 a.m.•55 views

CVE-2016-0933

10CVSS9.5AI score0.05746EPSS

CVE•added 2016/01/14 5:59 a.m.•54 views

CVE-2016-0944

10CVSS9.5AI score0.05746EPSS

CVE•added 2014/11/30 2:59 a.m.•53 views

CVE-2014-9150

Race condition in the MoveFileEx call hook feature in Adobe Reader and Acrobat 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently write to files in arbitrary locations, via an NTFS junction attack, a similar issue to CVE-2014-0568.

6.4CVSS6.7AI score0.06357EPSS

CVE•added 2014/12/10 9:59 p.m.•52 views

CVE-2014-8453

Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

5CVSS6.6AI score0.10853EPSS

CVE•added 2015/05/13 10:59 a.m.•52 views

CVE-2015-3060

Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on JavaScript API execution via unspecified vectors, a different vulnerability than CVE-2015-3061, CVE-2015-3062, CVE-2015-3063, CVE-2015-3064, CVE-2015-3065, CVE...

10CVSS6.4AI score0.31105EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8447

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8449

Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS9.6AI score0.39126EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8454

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8455 and CVE-2014-9165.

10CVSS7.4AI score0.2145EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-8459

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•51 views

CVE-2014-9165

10CVSS7.4AI score0.2145EPSS

CVE•added 2014/09/17 10:55 a.m.•48 views

CVE-2014-0560

Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

10CVSS7.5AI score0.15201EPSS

CVE•added 2014/09/17 10:55 a.m.•48 views

CVE-2014-0561

Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567.

10CVSS7.9AI score0.41354EPSS

CVE•added 2014/09/17 10:55 a.m.•48 views

CVE-2014-0562

Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."

4.3CVSS5.2AI score0.00649EPSS

CVE•added 2014/12/10 9:59 p.m.•48 views

CVE-2014-8458

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•47 views

CVE-2014-8455

10CVSS7.4AI score0.2145EPSS

CVE•added 2014/12/10 9:59 p.m.•46 views

CVE-2014-8460

10CVSS7.9AI score0.36278EPSS

CVE•added 2014/12/10 9:59 p.m.•46 views

CVE-2014-8461

10CVSS7.6AI score0.27545EPSS

CVE•added 2014/12/10 9:59 p.m.•45 views

CVE-2014-8457

10CVSS7.9AI score0.36278EPSS

CVE•added 2014/09/17 10:55 a.m.•43 views

CVE-2014-0563

Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to cause a denial of service (memory corruption) via unspecified vectors.

7.8CVSS6.4AI score0.01352EPSS

Total number of security vulnerabilities87