Adobe Acrobat Dc vulnerabilities
1,779 known vulnerabilities affecting adobe/acrobat_dc.
Total CVEs
1,779
CISA KEV
7
actively exploited
Public exploits
25
Exploited in wild
5
Severity breakdown
CRITICAL449HIGH847MEDIUM451LOW32
Vulnerabilities
Page 9 of 89
CVE-2023-26423HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26423 [HIGH] CWE-416 CVE-2023-26423: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26420HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26420 [HIGH] CWE-416 CVE-2023-26420: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26424HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26424 [HIGH] CWE-416 CVE-2023-26424: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26418HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26418 [HIGH] CWE-416 CVE-2023-26418: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26408HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26408 [HIGH] CWE-284 CVE-2023-26408: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26419HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26419 [HIGH] CWE-416 CVE-2023-26419: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26396HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26396 [HIGH] CWE-379 CVE-2023-26396: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malici
nvd
CVE-2023-26395HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26395 [HIGH] CWE-787 CVE-2023-26395: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26407HIGHCVSS 7.8≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26407 [HIGH] CWE-20 CVE-2023-26407: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-26397MEDIUMCVSS 5.5≥ 15.008.20082, ≤ 23.001.200932023-04-12
CVE-2023-26397 [MEDIUM] CWE-125 CVE-2023-26397: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must ope
nvd
CVE-2023-22242HIGHCVSS 7.8fixed in 22.003.203102023-01-27
CVE-2023-22242 [HIGH] CWE-787 CVE-2023-22242: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-22241HIGHCVSS 7.8fixed in 22.003.203102023-01-27
CVE-2023-22241 [HIGH] CWE-787 CVE-2023-22241: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-22240HIGHCVSS 7.8fixed in 22.003.203102023-01-27
CVE-2023-22240 [HIGH] CWE-787 CVE-2023-22240: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-21608HIGHCVSS 7.8KEV≥ 15.008.20082, ≤ 22.003.20282≥ 15.008.20082, ≤ 22.003.202812023-01-18
CVE-2023-21608 [HIGH] CWE-416 CVE-2023-21608: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-21605HIGHCVSS 7.8≥ 15.008.20082, ≤ 22.003.20282≥ 15.008.20082, ≤ 22.003.202812023-01-18
CVE-2023-21605 [HIGH] CWE-122 CVE-2023-21605: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file
nvd
CVE-2023-21612HIGHCVSS 7.8≥ 15.008.20082, ≤ 22.003.20282≥ 15.008.20082, ≤ 22.003.202812023-01-18
CVE-2023-21612 [HIGH] CWE-379 CVE-2023-21612: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction in that
nvd
CVE-2023-21611HIGHCVSS 7.8≥ 15.008.20082, ≤ 22.003.20282≥ 15.008.20082, ≤ 22.003.202812023-01-18
CVE-2023-21611 [HIGH] CWE-379 CVE-2023-21611: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction in that
nvd
CVE-2023-21609HIGHCVSS 7.8≥ 15.008.20082, ≤ 22.003.20282≥ 15.008.20082, ≤ 22.003.202812023-01-18
CVE-2023-21609 [HIGH] CWE-787 CVE-2023-21609: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
nvd
CVE-2023-21604HIGHCVSS 7.8≥ 15.008.20082, ≤ 22.003.20282≥ 15.008.20082, ≤ 22.003.202812023-01-18
CVE-2023-21604 [HIGH] CWE-121 CVE-2023-21604: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil
nvd
CVE-2023-21579HIGHCVSS 7.8≥ 15.008.20082, ≤ 22.003.20282≥ 15.008.20082, ≤ 22.003.202812023-01-18
CVE-2023-21579 [HIGH] CWE-190 CVE-2023-21579: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious
nvd