Adobe Acrobat Reader vulnerabilities

1,107 known vulnerabilities affecting adobe/acrobat_reader.

Total CVEs

1,107

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL352HIGH412MEDIUM316LOW27

Vulnerabilities

Page 40 of 56

CVE-2014-0524CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0524 [CRITICAL] CVE-2014-0524: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0522, CVE-2014-0523, and CVE-2014-0526.

nvd

CVE-2014-0522CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0522 [CRITICAL] CWE-119 CVE-2014-0522: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0523, CVE-2014-0524, and CVE-2014-0526.

nvd

CVE-2014-0528CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0528 [CRITICAL] CWE-399 CVE-2014-0528: Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Double free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2014-0526CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0526 [CRITICAL] CVE-2014-0526: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attac Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0522, CVE-2014-0523, and CVE-2014-0524.

nvd

CVE-2014-0525CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0525 [CRITICAL] CWE-264 CVE-2014-0525: The API in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X The API in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X does not prevent access to unmapped memory, which allows attackers to execute arbitrary code via unspecified API calls.

nvd

CVE-2014-0529CRITICALCVSS 10.0v10.0v10.0.1+19 more2014-05-14

CVE-2014-0529 [CRITICAL] CWE-119 CVE-2014-0529: Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows a Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2014-0521MEDIUMCVSS 4.3v10.0v10.0.1+19 more2014-05-14

CVE-2014-0521 [MEDIUM] CWE-200 CVE-2014-0521: Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not prop Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not properly implement JavaScript APIs, which allows remote attackers to obtain sensitive information via a crafted PDF document.

nvd

CVE-2014-0511CRITICALCVSS 10.0v11.0.62014-03-27

CVE-2014-0511 [CRITICAL] CWE-119 CVE-2014-0511: Heap-based buffer overflow in Adobe Reader 11.0.06 allows remote attackers to execute arbitrary code Heap-based buffer overflow in Adobe Reader 11.0.06 allows remote attackers to execute arbitrary code via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2014.

nvd

CVE-2014-0512CRITICALCVSS 10.0v11.0.62014-03-27

CVE-2014-0512 [CRITICAL] CWE-264 CVE-2014-0512: Adobe Reader 11.0.06 allows attackers to bypass a PDF sandbox protection mechanism via unspecified v Adobe Reader 11.0.06 allows attackers to bypass a PDF sandbox protection mechanism via unspecified vectors, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2014.

nvd

CVE-2013-1376CRITICALCVSS 10.0v10.0v10.0.1+30 more2014-01-30

CVE-2013-1376 [CRITICAL] CVE-2013-1376: Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11 Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-0606, CVE-2013-0612, CVE-2013-0615, CVE-2013-0617, and CVE-2013-0621.

nvd

CVE-2013-5325CRITICALCVSS 9.3v11.0v11.0.1+3 more2013-10-09

CVE-2013-5325 [CRITICAL] CWE-94 CVE-2013-5325: Adobe Reader and Acrobat 11.x before 11.0.05 on Windows allow remote attackers to execute arbitrary Adobe Reader and Acrobat 11.x before 11.0.05 on Windows allow remote attackers to execute arbitrary JavaScript code in a javascript: URL via a crafted PDF document.

nvd

CVE-2013-3357CRITICALCVSS 10.0v10.0v10.0.1+14 more2013-09-12

CVE-2013-3357 [CRITICAL] CWE-189 CVE-2013-3357: Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Ma Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3358.

nvd

CVE-2013-3356CRITICALCVSS 10.0v11.0v11.0.1+14 more2013-09-12

CVE-2013-3356 [CRITICAL] CVE-2013-3356: Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3353.

nvd

CVE-2013-3355CRITICALCVSS 10.0v11.0v11.0.1+14 more2013-09-12

CVE-2013-3355 [CRITICAL] CVE-2013-3355: Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attacke Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3352 and CVE-2013-3354.

nvd

CVE-2013-3353CRITICALCVSS 10.0v11.0v11.0.1+14 more2013-09-12

CVE-2013-3353 [CRITICAL] CWE-119 CVE-2013-3353: Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac Buffer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3356.

nvd

CVE-2013-3358CRITICALCVSS 10.0v11.0v11.0.1+14 more2013-09-12

CVE-2013-3358 [CRITICAL] CVE-2013-3358: Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Ma Integer overflow in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-3357.

nvd

CVE-2013-3351CRITICALCVSS 10.0v10.0v10.0.1+14 more2013-09-12

CVE-2013-3351 [CRITICAL] CWE-119 CVE-2013-3351: Multiple stack-based buffer overflows in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0 Multiple stack-based buffer overflows in Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attackers to execute arbitrary code via unspecified vectors.

nvd

CVE-2013-3354CRITICALCVSS 10.0v11.0v11.0.1+14 more2013-09-12

CVE-2013-3354 [CRITICAL] CVE-2013-3354: Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attacke Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3352 and CVE-2013-3355.

nvd

CVE-2013-3352CRITICALCVSS 10.0v11.0v11.0.1+14 more2013-09-12

CVE-2013-3352 [CRITICAL] CWE-119 CVE-2013-3352: Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attacke Adobe Reader and Acrobat before 10.1.8 and 11.x before 11.0.04 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-3354 and CVE-2013-3355.

nvd

CVE-2013-3346CRITICALCVSS 9.8KEVPoC≥ 9.0, < 9.5.5≥ 10.0, < 10.1.7+1 more2013-08-30

CVE-2013-3346 [CRITICAL] CVE-2013-3346: Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attacke Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2

nvd

← Previous40 / 56Next →