Adobe Acrobat vulnerabilities

1,356 known vulnerabilities affecting adobe/acrobat.

Total CVEs

1,356

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL540HIGH476MEDIUM316LOW24

Vulnerabilities

Page 44 of 68

CVE-2016-1007CRITICALCVSS 9.8≤ 11.0.142016-03-09

CVE-2016-1007 [CRITICAL] CWE-119 CVE-2016-1007: Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, and Acrobat and Acrobat Reader DC Continuous before 15.010.20060 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1009.

nvd

CVE-2016-1009CRITICALCVSS 9.8≤ 11.0.142016-03-09

CVE-2016-1009 [CRITICAL] CVE-2016-1009: Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, and Acrobat and Acrobat Reader DC Continuous before 15.010.20060 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1007.

nvd

CVE-2016-1008HIGHCVSS 8.4≤ 11.0.142016-03-09

CVE-2016-1008 [HIGH] CWE-20 CVE-2016-1008: Untrusted search path vulnerability in Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Untrusted search path vulnerability in Adobe Reader and Acrobat before 11.0.15, Acrobat and Acrobat Reader DC Classic before 15.006.30121, and Acrobat and Acrobat Reader DC Continuous before 15.010.20060 on Windows and OS X allows local users to gain privileges via a Trojan horse DLL in an unspecified directory.

nvd

CVE-2016-0945CRITICALCVSS 9.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0945 [CRITICAL] CVE-2016-0945: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0931, CVE-2016-0933

nvd

CVE-2016-0933CRITICALCVSS 9.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0933 [CRITICAL] CVE-2016-0933: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0931, CVE-2016-0936

nvd

CVE-2016-0946CRITICALCVSS 9.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0946 [CRITICAL] CVE-2016-0946: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0931, CVE-2016-0933

nvd

CVE-2016-0944CRITICALCVSS 9.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0944 [CRITICAL] CVE-2016-0944: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0931, CVE-2016-0933

nvd

CVE-2016-0940CRITICALCVSS 9.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0940 [CRITICAL] CVE-2016-0940: Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0932, CVE-2016-0934, CVE-2016-0937,

nvd

CVE-2016-0942CRITICALCVSS 9.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0942 [CRITICAL] CVE-2016-0942: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0931, CVE-2016-0933

nvd

CVE-2016-0937HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0937 [HIGH] CVE-2016-0937: Use-after-free vulnerability in the OCG object implementation in Adobe Reader and Acrobat before 11. Use-after-free vulnerability in the OCG object implementation in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0932,

nvd

CVE-2016-0935HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0935 [HIGH] CVE-2016-0935: Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Double free vulnerability in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via a crafted ExtGState dictionary.

nvd

CVE-2016-0936HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0936 [HIGH] CVE-2016-0936: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted JPEG 2000 data, a different vulnerability than CVE-2016-0931, CVE-2016-0933,

nvd

CVE-2016-0938HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0938 [HIGH] CVE-2016-0938: The AcroForm plugin in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classi The AcroForm plugin in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-201

nvd

CVE-2016-0931HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0931 [HIGH] CWE-119 CVE-2016-0931: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FileAttachment annotation, a different vulnerability than CVE-2016

nvd

CVE-2016-0939HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0939 [HIGH] CVE-2016-0939: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (uninitialized pointer dereference and memory corruption) via unspecified vectors, a different vulnerability

nvd

CVE-2016-0943HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0943 [HIGH] CWE-264 CVE-2016-0943: Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X mishandle the Global object, which allows attackers to bypass JavaScript API execution restrictions via unspecified vectors.

nvd

CVE-2016-0947HIGHCVSS 7.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0947 [HIGH] CVE-2016-0947: Untrusted search path vulnerability in Adobe Download Manager, as used in Adobe Reader and Acrobat b Untrusted search path vulnerability in Adobe Download Manager, as used in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X, allows local users to gain privileges via a crafted resource in an unspecified directory.

nvd

CVE-2016-0932HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0932 [HIGH] CVE-2016-0932: Use-after-free vulnerability in the Doc object implementation in Adobe Reader and Acrobat before 11. Use-after-free vulnerability in the Doc object implementation in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-0934,

nvd

CVE-2016-0941HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0941 [HIGH] CVE-2016-0941: Use-after-free vulnerability in the Search object implementation in Adobe Reader and Acrobat before Use-after-free vulnerability in the Search object implementation in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-093

nvd

CVE-2016-0934HIGHCVSS 8.8≤ 11.0.13v11.0.0+12 more2016-01-14

CVE-2016-0934 [HIGH] CVE-2016-0934: Use-after-free vulnerability in AGM.dll in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acro Use-after-free vulnerability in AGM.dll in Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allows attackers to execute arbitrary code via a multiple-layer PDF document, a different vulnerability than CVE-2016-0932, CVE-2016-09

nvd

← Previous44 / 68Next →