CVSS: 8.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28634 – Adobe Acrobat Reader AcrobatUtils.scpt Extension OS Command Injection Vulnerability
https://notcve.org/view.php?id=CVE-2021-28634
20 Aug 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Improper Neutralization of Special Elements used in an OS Command. An authenticated attacker could leverage this vulnerability to achieve arbitrary code execution on the host machine in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores)... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 1%CPEs: 6EXPL: 0CVE-2021-28638 – Adobe Acrobat Reader DC PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28638
15 Jul 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Heap-based Buffer overflow vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-122: Heap-based Buffer Overflow •
CVSS: 9.3EPSS: 17%CPEs: 6EXPL: 0CVE-2021-28639 – Adobe Acrobat Reader DC setAction Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28639
15 Jul 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Use-after-free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (y an... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-416: Use After Free •
CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0CVE-2021-28643 – Adobe Acrobat Pro DC embedDocAsDataObject Type Confusion Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2021-28643
15 Jul 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by a Type Confusion vulnerability. An unauthenticated attacker could leverage this vulnerability to disclose sensitive memory information in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 17%CPEs: 6EXPL: 0CVE-2021-35981 – Adobe Acrobat Reader DC launchURL Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-35981
15 Jul 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Use-after-free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (y an... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 17%CPEs: 6EXPL: 0CVE-2021-35983 – Adobe Acrobat Reader DC AcroForm Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-35983
15 Jul 2021 — Acrobat Reader DC versions 2021.005.20054 (and earlier), 2020.004.30005 (and earlier) and 2017.011.30197 (and earlier) are affected by an Use-after-free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.005.20054 (y anteriores), 2020.004.30005 (y anteriores), y 2017.011.30197 (y an... • https://helpx.adobe.com/security/products/acrobat/apsb21-51.html • CWE-416: Use After Free •
CVSS: 8.8EPSS: 1%CPEs: 4EXPL: 0CVE-2021-28562 – Adobe Acrobat Reader use-after-free could lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-28562
28 Jun 2021 — Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier) and 2017.011.30194 (and earlier) are affected by a Use After Free vulnerability when executing search queries through Javascript. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader versiones DC 2021.001.20150 (y anteriore... • https://helpx.adobe.com/security/products/acrobat/apsb21-29.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-28631 – Adobe Acrobat Reader DC AcroForm Field Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28631
10 Jun 2021 — Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020.001.30025 (and earlier) and 2017.011.30196 (and earlier) are affected by an Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.001.20155 (y anteriores), versiones 2020.001.30025 (y anteriores) y ve... • https://helpx.adobe.com/security/products/acrobat/apsb21-37.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-28552 – Adobe Acrobat Reader DC XFA Template Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-28552
10 Jun 2021 — Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020.001.30025 (and earlier) and 2017.011.30196 (and earlier) are affected by an Use After Free vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.001.20155 (y anteriores), versiones 2020.001.30025 (y anteriores) y ve... • https://helpx.adobe.com/security/products/acrobat/apsb21-29.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 2%CPEs: 10EXPL: 0CVE-2021-28554 – Adobe Acrobat Reader DC Path Parsing Out-Of-Bounds Read could lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2021-28554
10 Jun 2021 — Acrobat Reader DC versions versions 2021.001.20155 (and earlier), 2020.001.30025 (and earlier) and 2017.011.30196 (and earlier) are affected by an Out-of-bounds Read vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. Acrobat Reader DC versiones 2021.001.20155 (y anteriores), versiones 2020.001.30025 (y anteriores) ... • https://helpx.adobe.com/security/products/acrobat/apsb21-29.html • CWE-125: Out-of-bounds Read •