Adobe Acrobat vulnerabilities

1,356 known vulnerabilities affecting adobe/acrobat.

Total CVEs

1,356

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL540HIGH476MEDIUM316LOW24

Vulnerabilities

Page 52 of 68

CVE-2014-8459CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8459 [CRITICAL] CVE-2014-8459: Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE-2014-8458, CVE-2014-8461, and CVE-2014-9158.

nvd

CVE-2014-9159CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-9159 [CRITICAL] CVE-2014-9159: Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 o Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8457 and CVE-2014-8460.

nvd

CVE-2014-8449CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8449 [CRITICAL] CWE-189 CVE-2014-8449: Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2014-8460CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8460 [CRITICAL] CVE-2014-8460: Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 o Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8457 and CVE-2014-9159.

nvd

CVE-2014-8455CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8455 [CRITICAL] CVE-2014-8455: Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8454 and CVE-2014-9165.

nvd

CVE-2014-9165CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-9165 [CRITICAL] CVE-2014-9165: Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8454 and CVE-2014-8455.

nvd

CVE-2014-8454CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8454 [CRITICAL] CVE-2014-8454: Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8455 and CVE-2014-9165.

nvd

CVE-2014-8446CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8446 [CRITICAL] CVE-2014-8446: Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8447, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, and CVE-2014-9158.

nvd

CVE-2014-8447CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8447 [CRITICAL] CVE-2014-8447: Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, and CVE-2014-9158.

nvd

CVE-2014-8456CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8456 [CRITICAL] CVE-2014-8456: Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, and CVE-2014-9158.

nvd

CVE-2014-8445CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8445 [CRITICAL] CWE-94 CVE-2014-8445: Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, and CVE-2014-9158.

nvd

CVE-2014-8457CRITICALCVSS 10.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8457 [CRITICAL] CWE-119 CVE-2014-8457: Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 o Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8460 and CVE-2014-9159.

nvd

CVE-2014-8453MEDIUMCVSS 5.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8453 [MEDIUM] CWE-264 CVE-2014-8453: Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remot Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to bypass the Same Origin Policy via unspecified vectors.

nvd

CVE-2014-8451MEDIUMCVSS 5.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8451 [MEDIUM] CVE-2014-8451: An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.1 An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2014-8448.

nvd

CVE-2014-8452MEDIUMCVSS 5.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8452 [MEDIUM] CWE-200 CVE-2014-8452: Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remot Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to read arbitrary files via an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

nvd

CVE-2014-8448MEDIUMCVSS 5.0v10.0v10.0.1+25 more2014-12-10

CVE-2014-8448 [MEDIUM] CWE-200 CVE-2014-8448: An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.1 An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2014-8451.

nvd

CVE-2014-9150MEDIUMCVSS 6.4≤ 11.0.8v11.0+7 more2014-11-30

CVE-2014-9150 [MEDIUM] CVE-2014-9150: Race condition in the MoveFileEx call hook feature in Adobe Reader and Acrobat 11.x before 11.0.09 o Race condition in the MoveFileEx call hook feature in Adobe Reader and Acrobat 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently write to files in arbitrary locations, via an NTFS junction attack, a similar issue to CVE-2014-0568.

nvd

CVE-2014-5315MEDIUMCVSS 4.3≤ 9.5.2v9.0+20 more2014-09-26

CVE-2014-5315 [MEDIUM] CWE-79 CVE-2014-5315: Cross-site scripting (XSS) vulnerability in the Help page in Adobe Acrobat 9.5.2 and earlier and Col Cross-site scripting (XSS) vulnerability in the Help page in Adobe Acrobat 9.5.2 and earlier and ColdFusion 8.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

nvd

CVE-2014-0567CRITICALCVSS 10.0v10.0v10.0.1+23 more2014-09-17

CVE-2014-0567 [CRITICAL] CVE-2014-0567: Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 o Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0561.

nvd

CVE-2014-0565CRITICALCVSS 10.0v10.0v10.0.1+23 more2014-09-17

CVE-2014-0565 [CRITICAL] CWE-119 CVE-2014-0565: Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0566.

nvd

← Previous52 / 68Next →