Adobe Acrobat Reader vulnerabilities
1,107 known vulnerabilities affecting adobe/acrobat_reader.
Total CVEs
1,107
CISA KEV
21
actively exploited
Public exploits
43
Exploited in wild
25
Severity breakdown
CRITICAL352HIGH412MEDIUM316LOW27
Vulnerabilities
Page 4 of 56
CVE-2024-41833MEDIUMCVSS 5.5≥ 20.001.3005, < 20.005.30655≤ 24.001.301232024-08-14
CVE-2024-41833 [MEDIUM] CWE-125 CVE-2024-41833: Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affec
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must
cvelistv5nvd
CVE-2024-41834MEDIUMCVSS 5.5≥ 20.001.3005, < 20.005.30655≤ 24.001.301232024-08-14
CVE-2024-41834 [MEDIUM] CWE-125 CVE-2024-41834: Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affec
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must
cvelistv5nvd
CVE-2024-41832MEDIUMCVSS 5.5≥ 20.001.3005, < 20.005.30655≤ 24.001.301232024-08-14
CVE-2024-41832 [MEDIUM] CWE-125 CVE-2024-41832: Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affec
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must
cvelistv5nvd
CVE-2024-41835MEDIUMCVSS 5.5≥ 20.001.3005, < 20.005.30655≤ 24.001.301232024-08-14
CVE-2024-41835 [MEDIUM] CWE-125 CVE-2024-41835: Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affec
Acrobat Reader versions 20.005.30636, 24.002.20965, 24.002.20964, 24.001.30123 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must
cvelistv5nvd
CVE-2024-34129HIGHCVSS 7.5fixed in 24.5.0.336942024-06-13
CVE-2024-34129 [HIGH] CWE-22 CVE-2024-34129: Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Improper Limitation
Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability that could result in a security feature bypass. An attacker could exploit this vulnerability to access files and directories that are outside the restricted directory and also to o
nvd
CVE-2024-34130MEDIUMCVSS 5.5fixed in 24.5.0.336942024-06-13
CVE-2024-34130 [MEDIUM] CWE-863 CVE-2024-34130: Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Incorrect Authoriza
Acrobat Mobile Sign Android versions 24.4.2.33155 and earlier are affected by an Incorrect Authorization vulnerability that could result in a Security feature bypass. An attacker could exploit this vulnerability to access confidential information. Exploitation of this issue does not require user interaction.
nvd
CVE-2024-30279HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-23
CVE-2024-30279 [HIGH] CWE-787 CVE-2024-30279: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an out-of-bounds writ
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-30280HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-23
CVE-2024-30280 [HIGH] CWE-125 CVE-2024-30280: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an out-of-bounds read
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires
cvelistv5nvd
CVE-2024-34095HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34095 [HIGH] CWE-416 CVE-2024-34095: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vuln
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34099HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34099 [HIGH] CWE-284 CVE-2024-34099: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Access Co
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34100HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34100 [HIGH] CWE-416 CVE-2024-34100: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vuln
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34098HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34098 [HIGH] CWE-20 CVE-2024-34098: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Input Val
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-30284HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-30284 [HIGH] CWE-416 CVE-2024-30284: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vuln
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-30310HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-30310 [HIGH] CWE-787 CVE-2024-30310: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an out-of-bounds writ
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34096HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34096 [HIGH] CWE-416 CVE-2024-34096: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vuln
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34094HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34094 [HIGH] CWE-416 CVE-2024-34094: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vuln
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-34097HIGHCVSS 7.8≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34097 [HIGH] CWE-416 CVE-2024-34097: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vuln
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2024-30311MEDIUMCVSS 5.5≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-30311 [MEDIUM] CWE-125 CVE-2024-30311: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier Answer: are affected by an out-of-bou
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious fil
cvelistv5nvd
CVE-2024-34101MEDIUMCVSS 5.5≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-34101 [MEDIUM] CWE-125 CVE-2024-34101: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier Answer: are affected by an out-of-bou
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious fil
cvelistv5nvd
CVE-2024-30312MEDIUMCVSS 5.5≥ 20.001.30002, < 20.005.30635≥ 20.001.30002, < 20.005.30636+1 more2024-05-15
CVE-2024-30312 [MEDIUM] CWE-125 CVE-2024-30312: Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier Answer: are affected by an out-of-bou
Acrobat Reader versions 20.005.30574, 24.002.20736 and earlier Answer: are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious fil
cvelistv5nvd