Adobe Acrobat Reader vulnerabilities
1,107 known vulnerabilities affecting adobe/acrobat_reader.
Total CVEs
1,107
CISA KEV
21
actively exploited
Public exploits
43
Exploited in wild
25
Severity breakdown
CRITICAL352HIGH412MEDIUM316LOW27
Vulnerabilities
Page 10 of 56
CVE-2023-21610HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21610 [HIGH] CWE-121 CVE-2023-21610: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil
cvelistv5nvd
CVE-2023-21605HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21605 [HIGH] CWE-122 CVE-2023-21605: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file
cvelistv5nvd
CVE-2023-21611HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21611 [HIGH] CWE-379 CVE-2023-21611: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction in that
cvelistv5nvd
CVE-2023-21579HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21579 [HIGH] CWE-190 CVE-2023-21579: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious
cvelistv5nvd
CVE-2023-21607HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21607 [HIGH] CWE-20 CVE-2023-21607: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-21604HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21604 [HIGH] CWE-121 CVE-2023-21604: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fil
cvelistv5nvd
CVE-2023-21609HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21609 [HIGH] CWE-787 CVE-2023-21609: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-21606HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21606 [HIGH] CWE-787 CVE-2023-21606: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-21614MEDIUMCVSS 5.5≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21614 [MEDIUM] CWE-125 CVE-2023-21614: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interacti
cvelistv5nvd
CVE-2023-21581MEDIUMCVSS 5.5≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21581 [MEDIUM] CWE-125 CVE-2023-21581: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interacti
cvelistv5nvd
CVE-2023-21585MEDIUMCVSS 5.5≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21585 [MEDIUM] CWE-125 CVE-2023-21585: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interacti
cvelistv5nvd
CVE-2023-21613MEDIUMCVSS 5.5≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21613 [MEDIUM] CWE-125 CVE-2023-21613: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interacti
cvelistv5nvd
CVE-2022-42339HIGHCVSS 7.8≥ 20.001.30005, < 20.005.30407≥ unspecified, ≤ 20.005.303812022-10-14
CVE-2022-42339 [HIGH] CWE-121 CVE-2022-42339: Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected
Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-38450HIGHCVSS 7.8≥ 20.001.30005, < 20.005.30407≥ unspecified, ≤ 20.005.303812022-10-14
CVE-2022-38450 [HIGH] CWE-121 CVE-2022-38450: Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected
Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-38437MEDIUMCVSS 5.5≥ 20.001.30005, < 20.005.30407≥ unspecified, ≤ 20.005.303812022-10-14
CVE-2022-38437 [MEDIUM] CWE-416 CVE-2022-38437: Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected
Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a m
cvelistv5nvd
CVE-2022-42342MEDIUMCVSS 5.5≥ 20.001.30005, < 20.005.30407≥ unspecified, ≤ 20.005.303812022-10-14
CVE-2022-42342 [MEDIUM] CWE-125 CVE-2022-42342: Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected
Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must ope
cvelistv5nvd
CVE-2022-35691MEDIUMCVSS 5.5≥ 20.001.30005, < 20.005.30407≥ unspecified, ≤ 20.005.303812022-10-14
CVE-2022-35691 [MEDIUM] CWE-476 CVE-2022-35691: Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected
Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a
cvelistv5nvd
CVE-2022-38449MEDIUMCVSS 5.5≥ 20.001.30005, < 20.005.30407≥ unspecified, ≤ 20.005.303812022-10-14
CVE-2022-38449 [MEDIUM] CWE-125 CVE-2022-38449: Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected
Adobe Acrobat Reader versions 22.002.20212 (and earlier) and 20.005.30381 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must ope
cvelistv5nvd
CVE-2022-35667HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30362≥ 17.011.30059, ≤ 17.012.30249+1 more2022-08-11
CVE-2022-35667 [HIGH] CWE-787 CVE-2022-35667: Adobe Acrobat Reader versions 22.001.20169 (and earlier), 20.005.30362 (and earlier) and 17.012.3024
Adobe Acrobat Reader versions 22.001.20169 (and earlier), 20.005.30362 (and earlier) and 17.012.30249 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2022-35666HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30362≥ 17.011.30059, ≤ 17.012.30249+1 more2022-08-11
CVE-2022-35666 [HIGH] CWE-20 CVE-2022-35666: Adobe Acrobat Reader versions 22.001.20169 (and earlier), 20.005.30362 (and earlier) and 17.012.3024
Adobe Acrobat Reader versions 22.001.20169 (and earlier), 20.005.30362 (and earlier) and 17.012.30249 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd