Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader

Описание

Multiple vulnerabilities were found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information.

Below is a complete list of vulnerabilities:

1. A uncontrolled search path element vulnerability can be exploited to execute arbitrary code.
2. A NULL pointer dereference vulnerability can be exploited to cause denial of service.
3. A use after free vulnerability can be exploited to execute arbitrary code.
4. An out of bounds write vulnerability can be exploited to cause denial of service.
5. A heap based buffer overflow vulnerability can be exploited to execute arbitrary code.
6. An out of bounds read vulnerability can be exploited to cause denial of service.
7. A type confusion vulnerability can be expoited to execute arbitrary code.
8. A stack based buffer overflow vulnerability can be exploited to execute arbitrary code.
9. An information exposure vulnerability can be exploited to obtain sensitive information.
10. An out of bounds read vulnerability can be exploited to obtain sensitive information.
11. An use after free vulnerability can be exploited to execute arbitrary code.

Первичный источник обнаружения

• APSB21-55
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Adobe-Acrobat-Reader-DC-Continuous
• Adobe-Acrobat-DC-Continuous
• Adobe-Acrobat-Reader-2017
• Adobe-Acrobat-2017
• Adobe-Acrobat-Reader-2020
• Adobe-Acrobat-2020

Список CVE

• CVE-2021-35982
  high
• CVE-2021-39853
  high
• CVE-2021-39859
  high
• CVE-2021-39843
  critical
• CVE-2021-39840
  critical
• CVE-2021-39863
  critical
• CVE-2021-39861
  high
• CVE-2021-39841
  critical
• CVE-2021-39845
  high
• CVE-2021-39855
  high
• CVE-2021-39844
  warning
• CVE-2021-39836
  critical
• CVE-2021-39852
  high
• CVE-2021-39838
  critical
• CVE-2021-39851
  high
• CVE-2021-39846
  high
• CVE-2021-39837
  critical
• CVE-2021-39854
  high
• CVE-2021-39857
  warning
• CVE-2021-39842
  critical
• CVE-2021-39860
  high
• CVE-2021-39858
  warning
• CVE-2021-39849
  high
• CVE-2021-39856
  high
• CVE-2021-39839
  critical
• CVE-2021-39850
  high
• CVE-2021-40726
  critical
• CVE-2021-40725
  critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com