CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0CVE-2020-9707 – Adobe Acrobat Pro DC selectFeed Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-9707
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. Adobe Acrobat and Reader versiones 2020.009.20074 y anteriores, versiones 2020.001.30002, 2017.011.30171 y anteriores, y versiones 2015.006.30523 y anteriores, presentan una vulnerabilidad de lectura fuera de límites. Una explotación con éxito podría conllevar a una divulgación de información. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Pro DC. • https://helpx.adobe.com/security/products/acrobat/apsb20-48.html https://www.zerodayinitiative.com/advisories/ZDI-20-987 • CWE-125: Out-of-bounds Read •
CVSS: 4.3EPSS: 0%CPEs: 10EXPL: 0CVE-2020-9710 – Adobe Acrobat Pro DC convert Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-9710
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. Adobe Acrobat and Reader versiones 2020.009.20074 y anteriores, versiones 2020.001.30002, 2017.011.30171 y anteriores, y versiones 2015.006.30523 y anteriores, presentan una vulnerabilidad de lectura fuera de límites. Una explotación con éxito podría conllevar a una divulgación de información. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Pro DC. • https://helpx.adobe.com/security/products/acrobat/apsb20-48.html https://www.zerodayinitiative.com/advisories/ZDI-20-989 • CWE-125: Out-of-bounds Read •
CVSS: 7.1EPSS: 0%CPEs: 10EXPL: 0CVE-2020-9712 – Adobe Acrobat Pro DC Web2PDF:AppLinks JavaScript Restrictions Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2020-9712
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a security bypass vulnerability. Successful exploitation could lead to security feature bypass. Adobe Acrobat and Reader versiones 2020.009.20074 y anteriores, versiones 2020.001.30002, 2017.011.30171 y anteriores, y versiones 2015.006.30523 y anteriores, presentan una vulnerabilidad de omisión de seguridad. Una explotación con éxito podría conllevar a una omisión de la característica de seguridad. This vulnerability allows remote attackers to bypass JavaScript API restrictions on affected installations of Adobe Acrobat Pro DC. • https://helpx.adobe.com/security/products/acrobat/apsb20-48.html https://www.zerodayinitiative.com/advisories/ZDI-20-990 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2020-9694 – Adobe Acrobat Reader DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-9694
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution . Adobe Acrobat and Reader versiones 2020.009.20074 y anteriores, versiones 2020.001.30002, 2017.011.30171 y anteriores, y versiones 2015.006.30523 y anteriores, presentan una vulnerabilidad de escritura fuera de límites. Una explotación con éxito podría conllevar a una ejecución de código arbitraria. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. • https://helpx.adobe.com/security/products/acrobat/apsb20-48.html https://www.zerodayinitiative.com/advisories/ZDI-20-983 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 34%CPEs: 10EXPL: 2CVE-2020-9715 – Adobe Acrobat Reader DC ESObject Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-9715
Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution . Adobe Acrobat and Reader versiones 2020.009.20074 y anteriores, versiones 2020.001.30002, 2017.011.30171 y anteriores, y versiones 2015.006.30523 y anteriores, presentan una vulnerabilidad de uso de la memoria previamente liberada. Una explotación con éxito podría conllevar a una ejecución de código arbitraria. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. • https://github.com/lsw29475/CVE-2020-9715 https://blog.exodusintel.com/2021/04/20/analysis-of-a-use-after-free-vulnerability-in-adobe-acrobat-reader-dc https://helpx.adobe.com/security/products/acrobat/apsb20-48.html https://www.zerodayinitiative.com/advisories/ZDI-20-991 • CWE-416: Use After Free •