CVSS: 10.0EPSS: 80%CPEs: 58EXPL: 0CVE-2014-8457
https://notcve.org/view.php?id=CVE-2014-8457
10 Dec 2014 — Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8460 and CVE-2014-9159. Desbordamiento de buffer basado en memoria dinámica en Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad diferente ... • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 80%CPEs: 58EXPL: 0CVE-2014-8449
https://notcve.org/view.php?id=CVE-2014-8449
10 Dec 2014 — Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors. Desbordamiento de enteros en Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados. • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 33%CPEs: 58EXPL: 0CVE-2014-8446
https://notcve.org/view.php?id=CVE-2014-8446
10 Dec 2014 — Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8447, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, CVE-2014-8461, and CVE-2014-9158. Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permiten a atacantes ejecutar código arbitrario o causar una denegación de s... • http://helpx.adobe.com/security/products/reader/apsb14-28.html •
CVSS: 10.0EPSS: 90%CPEs: 58EXPL: 0CVE-2014-8454
https://notcve.org/view.php?id=CVE-2014-8454
10 Dec 2014 — Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8455 and CVE-2014-9165. Vulnerabilidad de uso después de liberación en Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad diferenet a CVE-... • http://helpx.adobe.com/security/products/reader/apsb14-28.html •
CVSS: 10.0EPSS: 84%CPEs: 58EXPL: 0CVE-2014-9158
https://notcve.org/view.php?id=CVE-2014-9158
10 Dec 2014 — Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456, CVE-2014-8458, CVE-2014-8459, and CVE-2014-8461. Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permiten a atacantes ejecutar código arbitrario o causar una denegación de s... • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 6.5EPSS: 6%CPEs: 58EXPL: 0CVE-2014-8448
https://notcve.org/view.php?id=CVE-2014-8448
10 Dec 2014 — An unspecified JavaScript API in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to obtain sensitive information via unknown vectors, a different vulnerability than CVE-2014-8451. Una APi JavaScript no especifcada en Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permite a atacantes obtener información sensible a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2014-8451. • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 47%CPEs: 58EXPL: 0CVE-2014-9159
https://notcve.org/view.php?id=CVE-2014-9159
10 Dec 2014 — Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2014-8457 and CVE-2014-8460. Desbordamiento de buffer basado en memoria dinámica en Adobe Reader y Acrobat 10.x anterior a 10.1.13 y 11.x anterior a 11.0.10 en Windows y OS X permite a atacantes ejecutar código arbitrario a través de vectores no especificados, una vulnerabilidad diferente ... • http://helpx.adobe.com/security/products/reader/apsb14-28.html •
CVSS: 8.1EPSS: 0%CPEs: 20EXPL: 0CVE-2014-9150
https://notcve.org/view.php?id=CVE-2014-9150
30 Nov 2014 — Race condition in the MoveFileEx call hook feature in Adobe Reader and Acrobat 11.x before 11.0.09 on Windows allows attackers to bypass a sandbox protection mechanism, and consequently write to files in arbitrary locations, via an NTFS junction attack, a similar issue to CVE-2014-0568. Condición de carrera en la caracteristica 'MoveFileEx call hook' en Adobe Reader and Acrobat 11.x anterior a 11.0.09 en Windows permite a atacantes remotos evadir el mecanismo de protección de sandbox, y como consecuencia es... • http://helpx.adobe.com/security/products/reader/apsb14-28.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 6%CPEs: 56EXPL: 0CVE-2014-0565
https://notcve.org/view.php?id=CVE-2014-0565
17 Sep 2014 — Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-0566. Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en Windows y OS X permiten a atacantes ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria) a través de vectores no especificados, una vulnerabilidad dife... • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.1EPSS: 2%CPEs: 56EXPL: 0CVE-2014-0562
https://notcve.org/view.php?id=CVE-2014-0562
17 Sep 2014 — Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.1.12 and 11.x before 11.0.09 on OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)." Vulnerabilidad de XSS en Adobe Reader y Acrobat 10.x anterior a 10.1.12 y 11.x anterior a 11.0.09 en OS X permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores no especificados, también conocido como 'Universal XSS (UXSS)'. • http://helpx.adobe.com/security/products/reader/apsb14-20.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •