CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-26395 – Adobe Acrobat parsing PDF Out-of-bounds Write Arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-26395
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/acrobat/apsb23-24.html • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-26406 – ZDI-CAN-20712: Net.HTTP.request URL restriction bypass
https://notcve.org/view.php?id=CVE-2023-26406
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/acrobat/apsb23-24.html • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-26408 – ZDI-CAN-20712: AnnotsString Object prototype pollution Restrictions Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-26408
Adobe Acrobat Reader versions 23.001.20093 (and earlier) and 20.005.30441 (and earlier) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/acrobat/apsb23-24.html • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 30%CPEs: 3EXPL: 0CVE-2023-26410 – ZDI-CAN-20309: Adobe Substance 3D Designer USD File Parsing Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-26410
Adobe Substance 3D Designer version 12.4.0 (and earlier) is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/substance3d_designer/apsb23-28.html • CWE-416: Use After Free •
CVSS: 7.8EPSS: 7%CPEs: 3EXPL: 0CVE-2023-26412 – ZDI-CAN-20314: Adobe Substance 3D Designer USDA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-26412
Adobe Substance 3D Designer version 12.4.0 (and earlier) is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. • https://helpx.adobe.com/security/products/substance3d_designer/apsb23-28.html • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •