Adobe Acrobat vulnerabilities

1,356 known vulnerabilities affecting adobe/acrobat.

Total CVEs

1,356

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL540HIGH476MEDIUM316LOW24

Vulnerabilities

Page 53 of 68

CVE-2014-0566CRITICALCVSS 10.0≥ 10.0, < 10.1.15≥ 11.0.0, < 11.0.122014-09-17

CVE-2014-0566 [CRITICAL] CVE-2014-0566: Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0565.

nvd

CVE-2014-0560CRITICALCVSS 10.0v10.0v10.0.1+23 more2014-09-17

CVE-2014-0560 [CRITICAL] CWE-399 CVE-2014-0560: Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2014-0568CRITICALCVSS 10.0v10.0v10.0.1+23 more2014-09-17

CVE-2014-0568 [CRITICAL] CVE-2014-0568: The NtSetInformationFile system call hook feature in Adobe Reader and Acrobat 10.x before 10.1.12 an The NtSetInformationFile system call hook feature in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via an NTFS junction attack.

nvd

CVE-2014-0561CRITICALCVSS 10.0v10.0v10.0.1+23 more2014-09-17

CVE-2014-0561 [CRITICAL] CWE-119 CVE-2014-0561: Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 o Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-0567.

nvd

CVE-2014-0563HIGHCVSS 7.8v10.0v10.0.1+23 more2014-09-17

CVE-2014-0563 [HIGH] CWE-119 CVE-2014-0563: Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to cause a denial of service (memory corruption) via unspecified vectors.

nvd

CVE-2014-0562MEDIUMCVSS 4.3v10.0v10.0.1+23 more2014-09-17

CVE-2014-0562 [MEDIUM] CWE-79 CVE-2014-0562: Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x be Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."

nvd

CVE-2014-0546CRITICALCVSS 9.8KEV≥ 10.0, < 10.1.11≥ 11.0, < 11.0.082014-08-12

CVE-2014-0546 [CRITICAL] CVE-2014-0546: Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to b Adobe Reader and Acrobat 10.x before 10.1.11 and 11.x before 11.0.08 on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context, via unspecified vectors.

nvd

CVE-2014-0523CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0523 [CRITICAL] CVE-2014-0523: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0522, CVE-2014-0524, and CVE-2014-0526.

nvd

CVE-2014-0527CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0527 [CRITICAL] CWE-399 CVE-2014-0527: Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2014-0524CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0524 [CRITICAL] CVE-2014-0524: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0522, CVE-2014-0523, and CVE-2014-0526.

nvd

CVE-2014-0522CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0522 [CRITICAL] CWE-119 CVE-2014-0522: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0523, CVE-2014-0524, and CVE-2014-0526.

nvd

CVE-2014-0528CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0528 [CRITICAL] CWE-399 CVE-2014-0528: Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2014-0526CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0526 [CRITICAL] CVE-2014-0526: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0522, CVE-2014-0523, and CVE-2014-0524.

nvd

CVE-2014-0525CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0525 [CRITICAL] CWE-264 CVE-2014-0525: The API in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X The API in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X does not prevent access to unmapped memory, which allows attackers to execute arbitrary code via unspecified API calls.

nvd

CVE-2014-0529CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0529 [CRITICAL] CWE-119 CVE-2014-0529: Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows a Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2014-0521MEDIUMCVSS 4.3v10.0v10.0.1+19 more2014-05-14

CVE-2014-0521 [MEDIUM] CWE-200 CVE-2014-0521: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not prop Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not properly implement JavaScript APIs, which allows remote attackers to obtain sensitive information via a crafted PDF document.

nvd

CVE-2013-1376CRITICALCVSS 10.0v9.0v9.1+30 more2014-01-30

CVE-2013-1376 [CRITICAL] CVE-2013-1376: Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11 Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-0606, CVE-2013-0612, CVE-2013-0615, CVE-2013-0617, and CVE-2013-0621.

nvd

CVE-2014-0493CRITICALCVSS 10.0≥ 10.0, < 10.1.9≥ 11.0, < 11.0.62014-01-15

CVE-2014-0493 [CRITICAL] CWE-119 CVE-2014-0493: Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on Windows and Mac OS X allow at Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0495.

nvd

CVE-2014-0495CRITICALCVSS 10.0≥ 10.0, < 10.1.9≥ 11.0, < 11.0.62014-01-15

CVE-2014-0495 [CRITICAL] CVE-2014-0495: Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on Windows and Mac OS X allow at Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0493.

nvd

CVE-2014-0496HIGHCVSS 8.8KEV≥ 10.0, < 10.1.9≥ 11.0, < 11.0.62014-01-15

CVE-2014-0496 [HIGH] CWE-416 CVE-2014-0496: Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.9 and 11.x before 11.0.06 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

← Previous53 / 68Next →