CVE-2008-4815Adobe Acrobat vulnerability

CWE-2645 documents5 sources
Severity
7.5HIGHNVD
EPSS
8.2%
top 7.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Adobe AcrobatAdobe Acrobat Reader
Timeline
PublishedNov 5
Latest updateFeb 11

Description

Untrusted search path vulnerability in Adobe Reader and Acrobat 8.1.2 and earlier on Unix and Linux allows attackers to gain privileges via a Trojan Horse program in an unspecified directory that is associated with an insecure RPATH.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDadobe/acrobat8.1.2+1

Patches

Patch: www.adobe.comPatch: www.adobe.com

🔴Vulnerability Details

1
GHSA
GHSA-qxh6-vf7m-96cv: Untrusted search path vulnerability in Adobe Reader and Acrobat 82022-05-14

📋Vendor Advisories

1
Red Hat
Reader: insecure RPATH flaw2008-11-04

📄Research Papers

1
arXiv
Integrating Network and Attack Graphs for Service-Centric Impact Analysis2026-02-11

💬Community

1
Bugzilla
CVE-2008-4815 Adobe Reader: insecure RPATH flaw2008-11-04
CVE-2008-4815 — Adobe Acrobat vulnerability | cvebase