Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader

Beschreibung

Multiple vulnerabilities were found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. OS command injection vulnerability can be exploited to execute arbitrary code.
2. Use after free vulnerability can be exploited to execute arbitrary code.
3. Information disclosure vulnerability can be exploited to cause denial of service or execute arbitrary code.
4. Code execution vulnerability can be exploited to execute arbitrary code.
5. NULL Pointer Dereference vulnerability can be exploited to dcause denial of service.
6. Out of bounds read vulnerability can be exploited to to gain privileges.
7. Buffer overflow vulnerability can be exploited to execute arbitrary code.
8. Type confusion vulnerability can be exploited to execute arbitrary code.
9. Out of bounds write vulnerability can be exploited to cause denial of service or execute arbitrary code.
10. Out of bounds read vulnerability can be exploited to obtain sensitive information.
11. Type confusion vulnerability can be exploited to cause denial of service

Ursprüngliche Informationshinweise

• APSB21-51

Ausnutzung

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Betroffene Produkte

• Adobe-Acrobat-Reader-DC-Continuous
• Adobe-Acrobat-DC-Continuous
• Adobe-Acrobat-Reader-2017
• Adobe-Acrobat-2017
• Adobe-Acrobat-Reader-2020
• Adobe-Acrobat-2020

CVE Liste

• CVE-2021-28634
  critical
• CVE-2021-28639
  critical
• CVE-2021-28644
  critical
• CVE-2021-28636
  high
• CVE-2021-35980
  critical
• CVE-2021-35983
  critical
• CVE-2021-35985
  high
• CVE-2021-35988
  warning
• CVE-2021-35981
  critical
• CVE-2021-28638
  critical
• CVE-2021-35987
  warning
• CVE-2021-35984
  high
• CVE-2021-28641
  critical
• CVE-2021-28635
  critical
• CVE-2021-28640
  high
• CVE-2021-28643
  warning
• CVE-2021-28642
  critical
• CVE-2021-28637
  high
• CVE-2021-35986
  warning

Mehr erfahren

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken statistics.securelist.com