Adobe Acrobat Reader vulnerabilities
1,107 known vulnerabilities affecting adobe/acrobat_reader.
Total CVEs
1,107
CISA KEV
21
actively exploited
Public exploits
43
Exploited in wild
25
Severity breakdown
CRITICAL352HIGH412MEDIUM316LOW27
Vulnerabilities
Page 9 of 56
CVE-2023-26422HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26422 [HIGH] CWE-416 CVE-2023-26422: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26417HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26417 [HIGH] CWE-416 CVE-2023-26417: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26421HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26421 [HIGH] CWE-191 CVE-2023-26421: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Integer Underflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26406HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26406 [HIGH] CWE-284 CVE-2023-26406: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26418HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26418 [HIGH] CWE-416 CVE-2023-26418: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26425HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26425 [HIGH] CWE-125 CVE-2023-26425: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitati
cvelistv5nvd
CVE-2023-26424HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26424 [HIGH] CWE-416 CVE-2023-26424: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26405HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26405 [HIGH] CWE-20 CVE-2023-26405: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26408HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26408 [HIGH] CWE-284 CVE-2023-26408: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26420HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26420 [HIGH] CWE-416 CVE-2023-26420: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26407HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26407 [HIGH] CWE-20 CVE-2023-26407: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26395HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26395 [HIGH] CWE-787 CVE-2023-26395: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26419HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26419 [HIGH] CWE-416 CVE-2023-26419: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-26396HIGHCVSS 7.8≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26396 [HIGH] CWE-379 CVE-2023-26396: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malici
cvelistv5nvd
CVE-2023-26397MEDIUMCVSS 5.5≥ 20.001.3005, ≤ 20.005.30441≥ unspecified, ≤ 23.001.200932023-04-12
CVE-2023-26397 [MEDIUM] CWE-125 CVE-2023-26397: Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must ope
cvelistv5nvd
CVE-2023-22242HIGHCVSS 7.8≥ 20.001.30005, < 20.005.30436≥ unspecified, ≤ 20.005.304182023-01-27
CVE-2023-22242 [HIGH] CWE-787 CVE-2023-22242: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-22241HIGHCVSS 7.8≥ 20.001.30005, < 20.005.30436≥ unspecified, ≤ 20.005.304182023-01-27
CVE-2023-22241 [HIGH] CWE-787 CVE-2023-22241: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-22240HIGHCVSS 7.8≥ 20.001.30005, < 20.005.30436≥ unspecified, ≤ 20.005.304182023-01-27
CVE-2023-22240 [HIGH] CWE-787 CVE-2023-22240: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-21608HIGHCVSS 7.8KEV≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21608 [HIGH] CWE-416 CVE-2023-21608: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
cvelistv5nvd
CVE-2023-21612HIGHCVSS 7.8≥ 20.001.30005, ≤ 20.005.30418≥ unspecified, ≤ 20.005.304182023-01-18
CVE-2023-21612 [HIGH] CWE-379 CVE-2023-21612: Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.3041
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Creation of Temporary File in Directory with Incorrect Permissions vulnerability that could result in privilege escalation in the context of the current user. Exploitation of this issue requires user interaction in that
cvelistv5nvd