CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0CVE-2021-35986 – Adobe Acrobat Pro DC getAnnot Type Confusion Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-35986
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Type Confusion vulnerability. An unauthenticated attacker could leverage this vulnerability to read arbitrary system information in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (y a... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-35985 – Adobe Acrobat Pro DC PDFLibTool Null Pointer Dereference Bug
https://notcve.org/view.php?id=CVE-2021-35985
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Null pointer dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 201... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-476: NULL Pointer Dereference •
CVSS: 7.3EPSS: 1%CPEs: 6EXPL: 0CVE-2021-28640 – Adobe Acrobat Reader Use-After-Free Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28640
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Use-after-free vulnerability. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (y ante... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28642 – Adobe Acrobat Pro DC Out-of-Bounds Write Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28642
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Out-of-bounds write vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 ... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28641 – Adobe Acrobat Reader Use-After-Free Arbitrary Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28641
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Use-after-free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (y an... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-416: Use After Free •
CVSS: 8.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28636 – Adobe Acrobat Reader Unquoted Search Path Vulnerability
https://notcve.org/view.php?id=CVE-2021-28636
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Uncontrolled Search Path Element vulnerability. An attacker with access to the victim's C:/ folder could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.300... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-427: Uncontrolled Search Path Element •
CVSS: 9.3EPSS: 1%CPEs: 6EXPL: 0CVE-2021-28635 – Adobe Acrobat Reader Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2021-28635
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a use-after-free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (y ant... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28637 – Adobe Acrobat Pro DC PDFLibTool Out-of-Bounds Read Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28637
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an out-of-bounds read vulnerability. An unauthenticated attacker could leverage this vulnerability achieve arbitrary read / write system information in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 20... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-125: Out-of-bounds Read •
CVSS: 8.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28634 – Adobe Acrobat Reader AcrobatUtils.scpt Extension OS Command Injection Vulnerability
https://notcve.org/view.php?id=CVE-2021-28634
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Improper Neutralization of Special Elements used in an OS Command. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution on the host machine in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores)... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 1%CPEs: 6EXPL: 0CVE-2021-28638 – Adobe Acrobat Reader DC PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28638
15 Jul 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Heap-based Buffer overflow vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-122: Heap-based Buffer Overflow •